Help
FortiClient
FortiClient proactively defends against advanced attacks. Its tight integration with the Security Fabric enables policy-based automation to contain threats and control outbreaks. FortiClient is compatible with Fabric-Ready partners to further strengthen enterprises’ security posture.
btan
Staff & Editor
Staff & Editor

Created on ‎07-18-2025 04:07 AM Edited on ‎07-18-2025 04:08 AM By Moderator

Article Id 402115

Technical Tip: Check Linux FortiClient EMS packages dependencies

Description This article describes how to check Linux FortiClient EMS packages dependencies.
Scope FortiClient EMS 7.4.
Solution

When using third-party vulnerability scanner to scan on FortiClient EMS server, it may detect CVE on Linux packages.

 

In this example, p7zip-full package is detected vulnerable to CVE-2023-52168 and CVE-2023-52169 in the Linux server.

 

  1. Run the following CLI command to verify:

 

sudo apt-cache depends forticlientems

 

july-kb2-1.png

 

This output shows that p7zip-full is a dependency of FortiClient EMS.

 

  1. Run the following command to check the version detail of the package:

 

apt-cache policy p7zip-full

 

july-kb2-2.png

 

The p7zip-full version is 16.02, which is vulnerable to CVE-2023-52168 and CVE-2023-52169.

 

This two CVE will be fixed in EMS 7.4.4 version (ETA mid-August2025).

 

The above verification method can be used to check FortiClient EMS dependencies if there are other vulnerabilities found, as well as to confirm whether the affected package is related to FortiClient EMS.
Labels:
559
0 Kudos
Suggest New Article
Article Feedback
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.