CVE-2026-34385

Fleet is open source device management software. Prior to 4.81.0, a second-order SQL injection vulnerability in Fleet's Apple MDM profile delivery pipeline could allow an attacker with a valid MDM enrollment certificate to exfiltrate or modify the contents of the Fleet database, including user...

CVE-2026-34385 Fleet's Apple MDM profile delivery has second-order SQL injection that can compromise the database

Fleet is open source device management software. Prior to 4.81.0, a second-order SQL injection vulnerability in Fleet's Apple MDM profile delivery pipeline could allow an attacker with a valid MDM enrollment certificate to exfiltrate or modify the contents of the Fleet database, including user...

CVE-2025-24088

CVE-2025-24088 affects Apple macOS Tahoe 26. An app may be able to override MDM-enforced settings from profiles. The entries consistently state the issue was fixed in macOS Tahoe 26 by adding additional logic. Impact described as bypassing MDM enforcement; no exploitation details are provided in ...

Chinese Hackers Using Deepfakes in Advanced Mobile Banking Malware Attacks

A Chinese-speaking threat actor codenamed GoldFactory has been attributed to the development of highly sophisticated banking trojans, including a previously undocumented iOS malware called GoldPickaxe that's capable of harvesting identity documents, facial recognition data, and intercepting SMS...

MDM Profile on iOS 15/iPadOS 15 and macOS 12 devices shows as “Not Verified” or “Unverified” – On-Prem

Currentenrolleddevices that were upgraded from iOS 14/iPadOS14 orearlierto iOS/iPadOS15ornewly enrolled devices on iOS/iPadOS15may show “Not Verified” under the device“Settings General VPN & deviceManagementCitrix Workspace MDM Profile” Currentenrolled devices that were upgraded from macOS 11or...

MDM Profile on iOS 15/iPadOS 15 and macOS 12 devices shows as “Not Verified” or “Unverified”

Currentenrolleddevices that were upgraded from iOS 14/iPadOS14 or earlierto iOS/iPadOS15ornewly enrolled devices on iOS/iPadOS15may show “Not Verified” under the device“Settings General VPN & deviceManagementCitrix Workspace MDM Profile” Currentenrolled devices that were upgraded from macOS 11or...

Malicious MDM: Let's Hide This App

This blog post is authored by Warren Mercer and Paul Rascagneres with contributions from Nick Biasini Summary Since our initial discovery of a malicious mobile device management MDM platform that was loading fake applications onto smartphones, we have gained greater insight into the attacker's...

Apple iOS MDM Profile Signing Bypass

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple iOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the handling of signed...

CVE-2016-1766

The Profiles component in Apple iOS before 9.3 does not properly validate certificates, which allows attackers to spoof an MDM profile trust relationship via unspecified vectors...

Code injection

The Profiles component in Apple iOS before 9.3 does not properly validate certificates, which allows attackers to spoof an MDM profile trust relationship via unspecified vectors...

CVE-2016-1766

The Profiles component in Apple iOS before 9.3 does not properly validate certificates, which allows attackers to spoof an MDM profile trust relationship via unspecified vectors...