CVEFinder.io

CVE-2026-23998

⚠️ high
🔍 Scan for this CVE
Summary

Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet’s Windows MDM management endpoint could allow requests to be processed without proper client certificate validation. In certain circumstances, this could allow an attacker to impersonate an enrolled Windows device and retrieve sensitive configuration data. Fleet’s Windows MDM management endpoint relies on mutual TLS (mTLS) client certificates to authenticate enrolled devices. In affected versions,

Description

Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet’s Windows MDM management endpoint could allow requests to be processed without proper client certificate validation. In certain circumstances, this could allow an attacker to impersonate an enrolled Windows device and retrieve sensitive configuration data. Fleet’s Windows MDM management endpoint relies on mutual TLS (mTLS) client certificates to authenticate enrolled devices. In affected versions, requests that did not present a client certificate could be incorrectly treated as trusted. As a result, an attacker with prior knowledge of a valid enrolled device identifier could potentially impersonate that device and receive configuration payloads intended for it. These payloads may contain sensitive information such as Wi-Fi or VPN configuration data, certificates, or other secrets delivered through MDM profiles. This issue does not allow enrollment of new devices, administrative access to Fleet, or compromise of the Fleet control plane. Impact is limited to the targeted Windows device. Version 4.81.0 contains a patch. If an immediate upgrade is not possible, affected Fleet users should temporarily disable Windows MDM.

CVSS Score
7.5
High
EPSS Score
0.0
Exploit Probability
Published Date
2026-05-14
First Seen: 2026-05-17
📊 Relative Risk Intelligence

This CVE is Moderate Risk - more severe than 69.0% of all 328,009 vulnerabilities in our database.

#101,817
Above average severity
Severity Percentile
🎯 CISA SSVC Assessment Updated: May 15, 2026
🔍 Exploitation Status
None
No known exploits
⚙️ Automatable
NO
Requires human interaction
💥 Technical Impact
Partial
Limited system impact
SSVC data provided by CISA
Last Modified 2026-05-15
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CVSS Vector 4.0 CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CWE IDs (Weakness Types)
CWE-295

📦 Affected Products 1

Vendor Product Status Affected Versions
fleetdm fleet Affected
< 4.81.0

🔗 References 2

https://github.com/fleetdm/fleet/releases/tag/fleet-...
Product Release Notes
https://github.com/fleetdm/fleet/security/advisories...
Mitigation Vendor Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-24000 🔶 medium 5.3 0.1 Fleet is open source device management software. Prior to version 4.80.1, Fleet trusted client-supplied IP address heade... 2026-05-14
CVE-2026-24899 ⚠️ high 7.5 0.0 Fleet is open source device management software. Prior to version 4.82.0, a vulnerability in Fleet's Windows MDM enrollm... 2026-05-14
CVE-2026-26062 🔶 medium 6.5 0.1 Fleet is open source device management software. Prior to version 4.81.0, Fleet contained a denial-of-service (DoS) issu... 2026-05-14
CVE-2026-26191 ⛔ critical 9.8 0.0 Fleet is open source device management software. Prior to version 4.81.0, a vulnerability in Fleet's software installer ... 2026-05-14
CVE-2026-46356 ⚠️ high 7.5 0.1 Fleet is open source device management software. Prior to version 4.80.1, a vulnerability in Fleet's IP extraction logic... 2026-05-14
CVE-2026-27806 ⚠️ high 7.8 0.0 Fleet is open source device management software. Prior to 4.81.1, the Orbit agent's FileVault disk encryption key rotati... 2026-04-08
These CVEs affect the same products