PatchSiren cyber security CVE debrief
CVE-2026-39118 Iru, Inc CVE debrief
CVE-2026-39118 is a privilege escalation vulnerability in Iru, Inc Kandji Agent before v.4.7.5(5374). A local attacker can exploit this issue via a client validation gap to invoke restricted agent functionality. The CVE was published on 2026-06-15T20:16:27.447Z and has not been modified since then.
- Vendor
- Iru, Inc
- Product
- Kandji Agent
- CVSS
- Unknown
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-15
- Original CVE updated
- 2026-06-15
- Advisory published
- 2026-06-15
- Advisory updated
- 2026-06-15
Who should care
Users of Iru, Inc Kandji Agent before v.4.7.5(5374) should apply the patch to prevent local attackers from escalating privileges.
Technical summary
The vulnerability exists in Iru, Inc Kandji Agent before v.4.7.5(5374) due to a client validation gap. This gap allows a local attacker to invoke restricted agent functionality and escalate privileges.
Defensive priority
High
Recommended defensive actions
- Apply the patch: Upgrade to Iru, Inc Kandji Agent v.4.7.5(5374) or later.
- Review system logs for suspicious activity.
- Ensure that only authorized personnel have access to the system.
Evidence notes
The CVE record was obtained from the official CVE database [cve-org]. Additional information was obtained from the National Vulnerability Database [nvd] and the vendor's update page [ref-4].
Official resources
-
CVE-2026-39118 CVE record
CVE.org
-
CVE-2026-39118 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-39118 was published on 2026-06-15T20:16:27.447Z.