CISA KEV listing and FCEB patch order for CVE-2026-35616
Public Sector Action
Summary
Hide ▲
Show ▼
CISA added CVE-2026-35616 to the KEV Catalog and ordered FCEB agencies to patch FortiClient EMS by Thursday midnight, April 9. The mandate matters because the flaw is already exploited in the wild and can let attackers bypass authentication and authorization controls. CISA tied the order to BOD 22-01, making the remediation deadline compulsory for the affected federal systems.
Related Happenings
CISA sets June 28 patch deadline for Cisco Unified Communications Manager Server
Public Sector Action
H score35
First: 26.06.2026 22:43
Last: 26.06.2026 22:43
Sources 1
About this happening:
CISA ordered **federal agencies** to patch **CVE-2026-20230** in **Cisco Unified Communications Manager Server** by **June 28**, tightening exposure around an **actively exploited...
CISA sets June 28 patch deadline for Cisco Unified Communications Manager Server
Public Sector ActionAbout this happening: CISA ordered **federal agencies** to patch **CVE-2026-20230** in **Cisco Unified Communications Manager Server** by **June 28**, tightening exposure around an **actively exploited...
CISA BOD 26-04 three-day remediation directive
Public Sector Action
H score36
First: 24.06.2026 17:35
Last: 24.06.2026 17:35
Sources 1
About this happening:
CISA's **BOD 26-04** requires **federal agencies** to apply available security updates or vendor-recommended mitigations within **three days**, accelerating remediation for **acti...
CISA BOD 26-04 three-day remediation directive
Public Sector ActionAbout this happening: CISA's **BOD 26-04** requires **federal agencies** to apply available security updates or vendor-recommended mitigations within **three days**, accelerating remediation for **acti...
Trump executive order sets federal PQC migration deadlines
Public Sector Action
H score23
First: 23.06.2026 18:16
Last: 23.06.2026 18:16
Sources 1
About this happening:
President Trump signed **EO 14409**, ordering **federal agencies** to migrate **high-value assets** and **high-impact systems** to **post-quantum cryptography** on a fixed schedul...
Trump executive order sets federal PQC migration deadlines
Public Sector ActionAbout this happening: President Trump signed **EO 14409**, ordering **federal agencies** to migrate **high-value assets** and **high-impact systems** to **post-quantum cryptography** on a fixed schedul...
CISA KEV remediation order for CVE-2026-48907
Public Sector Action
H score89
First: 17.06.2026 08:50
Last: 17.06.2026 08:50
Sources 1
About this happening:
CISA added **CVE-2026-48907** to the **KEV catalog** and ordered **FCEB agencies** to apply fixes by **June 19, 2026**, forcing federal remediation of an **actively exploited** Jo...
CISA KEV remediation order for CVE-2026-48907
Public Sector ActionAbout this happening: CISA added **CVE-2026-48907** to the **KEV catalog** and ordered **FCEB agencies** to apply fixes by **June 19, 2026**, forcing federal remediation of an **actively exploited** Jo...
CISA KEV order for FCEB agencies on LiteSpeed cPanel flaw
Public Sector Action
H score36
First: 16.06.2026 13:47
Last: 16.06.2026 13:47
Sources 1
About this happening:
**CISA** added the **LiteSpeed cPanel user-end plugin** flaw to **KEV** and ordered **Federal Civilian Executive Branch agencies** to secure systems within **three days** under **...
CISA KEV order for FCEB agencies on LiteSpeed cPanel flaw
Public Sector ActionAbout this happening: **CISA** added the **LiteSpeed cPanel user-end plugin** flaw to **KEV** and ordered **Federal Civilian Executive Branch agencies** to secure systems within **three days** under **...
Timeline
-
06.04.2026 19:02 2 articles · 3mo ago
CISA adds CVE-2026-35616 to KEV and orders FCEB patching
Legal Policy Action UpdateCISA added CVE-2026-35616 to the Known Exploited Vulnerabilities (KEV) Catalog and ordered Federal Civilian Executive Branch (FCEB) agencies to patch FortiClient EMS instances by Thursday midnight, April 9, under Binding Operational Directive (BOD) 22-01.
Show sources
- CISA orders feds to patch Fortinet flaw exploited in attacks by Friday — www.bleepingcomputer.com — 06.04.2026 19:02
- CISA orders feds to patch Fortinet flaw exploited in attacks by Friday — www.bleepingcomputer.com — 06.04.2026 19:02
-
06.04.2026 19:02 1 articles · 3mo ago
Defused identifies CVE-2026-35616 in FortiClient EMS as a pre-auth access bypass
Technical Analysis UpdateDefused identified CVE-2026-35616 as a pre-authentication API access bypass in FortiClient Enterprise Management Server (EMS) that can let attackers bypass authentication and authorization controls entirely; Fortinet released emergency hotfixes for FortiClient EMS 7.4.5 and 7.4.6, said unauthenticated attackers can execute code or commands via specially crafted requests, and Shadowserver tracked nearly 2,000 exposed instances with more than 1,400 IPs in the United States and Europe.
Show sources
- CISA orders feds to patch Fortinet flaw exploited in attacks by Friday — www.bleepingcomputer.com — 06.04.2026 19:02