July 22nd 2026
Conductor HI
UCMS 4.35.1, UP 2.26.2
Features
PM-17611 – Digital Signature certificate for Mobile PKI derived credentials The Mobile PKI Credential Provider now issues a dedicated Digital Signature certificate alongside the authentication certificate during derived PIV credential enrollment. Issuance is transparent to the end user with no additional steps, the certificate is shown with its key usage in the credential list, and it supports the same lifecycle actions (renew, suspend, revoke) as existing certificates. Administrators can enable or disable each certificate independently.
Bug fixes
PM-19338 – Derived PIV credential enrollment fails when dynamic role management is enabled Resolved an issue where derived PIV credential (DPC) enrollment failed when dynamic role management was enabled, because the required roles were not available when the enrollment QR code was scanned.
PM-17678 – Focus not set on the PIN entry field during Mobile PKI enrollment Resolved an issue where the cursor was not automatically placed in the PIN entry field at the start of Mobile PKI (derived PIV credential) enrollment, requiring users to click into the field before entering their PIN.
Security fixes
PM-20029 – Addressed vulnerabilities: CVE-2026-55955, CVE-2026-53434.
PM-20043 / PM-20044 – Addressed vulnerability: CVE-2026-41710.
PM-20064 – Addressed vulnerabilities: CVE-2026-54399, CVE-2026-54428.
PM-20030 – Addressed vulnerability: CVE-2026-13149.