Fortinet has released an emergency patch for a zero-day authentication bypass vulnerability in FortiClient, tracked as CVE-2026-35616. The flaw allows attackers to bypass authentication mechanisms, potentially granting unauthorized access to affected systems.
The vulnerability is actively being exploited in the wild, adding urgency to the patching process. This represents the latest in a series of Fortinet vulnerabilities that have been targeted by threat actors, highlighting the continued focus on the company's products.