CVE-2023-48788CISA KEVEPSS p99.9%

CVE-2023-48788Fortinet FortiClient EMS SQL Injection Vulnerability

Fortinet / FortiClient EMS

Description

Fortinet FortiClient EMS contains a SQL injection vulnerability that allows an unauthenticated attacker to execute commands as SYSTEM via specifically crafted requests.

Scoring

EPSS98.53% probability of exploitation · percentile 99.9% · 2026-06-15T12:03:41Z

CISA KEV entry

Added to KEV: 2024-03-25

(incoming)1

TypeTargetConfidenceTier
KEVEntryFortinet FortiClient EMS SQL Injection Vulnerabilitykev-cve-2023-487880%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Fortinet FortiClient EMS Improper Access Control Vulnerability
CVE
Fortinet FortiWeb SQL Injection Vulnerability
CVE
CVE-2026-39815
CVE
CVE-2026-25088
CVE
Fortinet Multiple Products Format String Vulnerability
CVE
CVE-2025-58692
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.