Kandji security patch release for CVE-2026-39118
Security Patch Release
Summary
Hide ▲
Show ▼
Kandji fixed its MDM agent on macOS and assigned CVE-2026-39118 after validation showed a trust issue that could let a standard user disable enterprise security controls. The patch closes a macOS agent weakness exposed through XPC trust handling. The broader research showed the same technique can undermine tamper protection and remove visibility from security products.
Related Happenings
Ivanti Sentry patch release for CVE-2026-10520 and CVE-2026-10523
Security Patch Release
H score54
First: 10.06.2026 09:26
Last: 10.06.2026 09:26
Sources 1
About this happening:
**Ivanti** released a **patch bundle** for **Sentry** after identifying **two critical vulnerabilities** in the secure mobile gateway appliance, including **CVE-2026-10520** and *...
Ivanti Sentry patch release for CVE-2026-10520 and CVE-2026-10523
Security Patch ReleaseAbout this happening: **Ivanti** released a **patch bundle** for **Sentry** after identifying **two critical vulnerabilities** in the secure mobile gateway appliance, including **CVE-2026-10520** and *...
Ivanti EPMM patch release for CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821
Security Patch Release
H score66
First: 07.05.2026 18:20
Last: 07.05.2026 18:20
Sources 1
About this happening:
Ivanti released a security update for on-prem Endpoint Manager Mobile (EPMM) covering CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821. The patch addresses high-seve...
Ivanti EPMM patch release for CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821
Security Patch ReleaseAbout this happening: Ivanti released a security update for on-prem Endpoint Manager Mobile (EPMM) covering CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821. The patch addresses high-seve...
Latest development: 07.05.2026 20:55
Ivanti released fixes for CVE-2026-5786, CVE-2026-5787, CVE-2026-5788, and CVE-2026-7821 in Endpoint Manager Mobile (EPMM). The updates apply only to on-prem EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0.1, and Ivanti said the issues are not present in Ivanti Neurons for MDM, Ivanti EPM, Ivanti Sentry, or other Ivanti products.
Microsoft April 2026 Patch Tuesday security updates (167 flaws)
Security Patch Release
H score55
First: 14.04.2026 20:41
Last: 14.04.2026 20:41
Sources 1
About this happening:
Microsoft's **April 2026 Patch Tuesday** ships **security updates** for **167 flaws**, including **2 zero-days**, reducing exposure across widely used Microsoft software. The rele...
Microsoft April 2026 Patch Tuesday security updates (167 flaws)
Security Patch ReleaseAbout this happening: Microsoft's **April 2026 Patch Tuesday** ships **security updates** for **167 flaws**, including **2 zero-days**, reducing exposure across widely used Microsoft software. The rele...
Hewlett Packard Enterprise (HPE) security patch release for CVE-2026-23813
Security Patch Release
H score69
First: 10.03.2026 19:30
Last: 10.03.2026 19:30
Sources 1
About this happening:
**HPE** released **security updates** for **Aruba Networking AOS-CX**, closing **multiple vulnerabilities** including authentication and code execution issues on **CX-series campu...
Hewlett Packard Enterprise (HPE) security patch release for CVE-2026-23813
Security Patch ReleaseAbout this happening: **HPE** released **security updates** for **Aruba Networking AOS-CX**, closing **multiple vulnerabilities** including authentication and code execution issues on **CX-series campu...
Ivanti security patch release for CVE-2026-1281
Security Patch Release
H score46
First: 30.01.2026 06:43
Last: 30.01.2026 06:43
Sources 1
About this happening:
**Ivanti** released **security updates** for **Ivanti Endpoint Manager Mobile (EPMM)** after disclosure of **two critical zero-day flaws** that can enable **unauthenticated remote...
Ivanti security patch release for CVE-2026-1281
Security Patch ReleaseAbout this happening: **Ivanti** released **security updates** for **Ivanti Endpoint Manager Mobile (EPMM)** after disclosure of **two critical zero-day flaws** that can enable **unauthenticated remote...
Latest development: 13.02.2026 00:05
Reported on Feb. 12, 2026, attacks tied to Ivanti Endpoint Manager Mobile (EPMM) had struck the European Commission and agencies of the Dutch and Finnish governments after Ivanti disclosed CVE-2026-1281 and CVE-2026-1340 on Jan. 29. The European Commission said its central infrastructure managing mobile devices was hit on Jan. 30, with staff names and mobile numbers compromised, while Valtori said an attack of the same nature affected around 50,000 people associated with Finland's central government and leaked names, email addresses, phone numbers, and other device details.
Timeline
-
25.06.2026 14:00 2 articles · 3h ago
Kandji fixes MDM agent flaw assigned CVE-2026-39118
Mitigation Patch UpdateKandji's macOS MDM agent was fixed after XM Cyber identified a macOS XPC trust issue that let a standard local user call privileged helper functions without authentication and disable or remove EDR/MDM tools. The flaw was assigned CVE-2026-39118, and the remediation centers on validating the caller's identity during the XPC handshake instead of trusting cached signatures.
Show sources
- macOS Flaw Lets Standard Users Disable EDR and MDM — www.infosecurity-magazine.com — 25.06.2026 14:00
- macOS Flaw Lets Standard Users Disable EDR and MDM — www.infosecurity-magazine.com — 25.06.2026 14:00