Package impact

GO / github.com/fleetdm/fleet/v4

CVE	Severity	CVSS	Risk	Published	Description
CVE-2026-26191	critical	9.8	9.8	21d ago	Fleet vulnerable to OS command injection in software packages
CVE-2026-26062	medium	6.5	6.5	21d ago	Fleet server may terminate unexpectedly when handling certain gRPC requests
CVE-2026-24000	medium	5.3	5.3	21d ago	Fleet has a rate limiting bypass via untrusted client IP headers