Unauthorized Device Management Vulnerability in Fleet Open Source Software by FleetDM
CVE-2026-24004

1.7LOW

Key Information:

Vendor: Fleetdm
Status: Fleet
Vendor: CVE Published:; 26 February 2026

What is CVE-2026-24004?

Fleet is an open-source device management software that, in versions prior to 4.80.1, has a vulnerability in its Android MDM Pub/Sub handling. This flaw allows unauthenticated requests to trigger device unenrollment events, meaning an attacker could potentially send a crafted request to the Android Pub/Sub endpoint. This action could lead to the unauthorized removal of Android devices from Fleet management, affecting users who rely on this functionality. Notably, this vulnerability does not provide access to Fleet or allow command execution, limiting the impact to disruptions in device management. The issue can be mitigated by upgrading to version 4.80.1 or temporarily disabling Android MDM.

Affected Version(s)

fleet < 4.80.1

References

https://github.com/fleetdm/fleet/security/advisories/GHSA...

x_refsource_CONFIRM

CVSS V4

Score:

1.7

Severity:

LOW

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 26, 2026
Vulnerability Reserved
Jan 19, 2026

CVE-2026-24004 Data

JSON

Fleetdm

What is CVE-2026-24004?

Affected Version(s)

References

CVSS V4

Timeline