Akamai has mitigated a local privilege escalation vulnerability in Akamai Guardicore Platform Agent for macOS and Linux. Updated versions containing a fix for this vulnerability have been available since the beginning of April 2026 to all customers using Akamai Guardicore Platform Agent, and we strongly encourage all users to upgrade (if they have not yet done so). Akamai Guardicore Platform Agent and Akamai Zero Trust Client on Linux and macOS are affected by a local privilege escalation vulnerability. The underlying services create an IPC socket in the world-writable /tmp directory, which accepts unauthenticated IPC control messages.  This enables a TOCTOU vulnerability in the HandleSaveLogs() function of the service, by creating a log file and manipulating it into a symlink that points to the targeted path, which can allow an unprivileged local user to make arbitrary root-owned files world-writable.  In addition, a diagnostic collection tool (gimmelogs) running with root privileges was…