GO-2026-4335 — Vulnetix

Try Vulnetix Request Demo

GO-2026-4335 PUBLISHED

Fleet has a JWT signature bypass vulnerability in Azure AD MDM enrollment in github.com/fleetdm/fleet

Affected Products

Vendor	Product	Versions
github.com	fleetdm/fleet/v4	4.75.0, 4.76.0, 4.77.0

Timeline

Feb 3, 2026 CVE Published
Feb 4, 2026 CVE Updated

References

Open in Interactive Console →