Cloud Agent for MacOS Intel Release 6.2.1
November 14, 2025
With this release of Cloud Agent, we are introducing the following new features and enhancements.
Upgrades to MacOS Intel 6.2.0 Cloud Agent
This release of Cloud Agent supersedes Cloud Agent for MacOS Intel Release 6.2.0. MacOS Intel Cloud Agent 6.2.1 supports all the features available with release 6.2.0.
To learn more about the features available with release 6.2.1, refer to Cloud Agent for MacOS Intel Release 6.2.0 release notes.
Cloud Agent Log Relocation
We have updated the Cloud Agent logs directory to /Library/Application\ Support/QualysCloudAgent/Logs/qualys-cloud-agent.log. Earlier, the Cloud Agent logs were stored at /var/log/qualys.
The Cloud Agent and Cloud Agent logs sub-directories are now available under the same directory.
Patch Management Enhancements
We made the following enhancements for the Patch Management application.
| Enhancement | Description |
|---|---|
| Updated Patch Management Login Workflow | We have updated the Patch Management workflow to display the login window until the login action is completed or cancelled during the Operating System (OS) patch updates. Earlier, the login window was not displayed if a user logged out during the OS patch installation and tried to log in again. |
Behavioral Changes
There are no behavioral changes for this release.
Platform Coverage Support
There is no new platform coverage added in this release.
Issues Addressed
The following important and notable issues are fixed in this release.
| Component/Category | Description |
|---|---|
| Cloud Agent Installation | Cloud Agent for macOS Intel v6.3 could not be installed on the host assets and displayed an error message indicating the Cloud Agent is damaged. For more details, refer to Cloud Agent for macOS 6.2.0-36 (Intel) / 6.3.0-41 (ARM): “Application Damaged” Popup on macOS 15.6.1 (Sequoia) (IM-12268). We fixed this issue by updating the Cloud Agent pre-installation script. |
| Un-trusted Search Path Vulnerability | The shell scripts packaged with the Cloud Agent installer execute multiple system utilities without an absolute path or resetting a path to a safe value. This allows a malicious actor to place harmful files on your assets when the shell scripts are executed with elevated privileges. We have updated this behavior by setting up the fixed paths for shell script execution. This enhancement prevents the infiltration of malicious files on your assets and prevents you from any potential security threats. The updated shell script behavior also helps in mitigating the Untrusted Search Path Vulnerability (CWE-426). |
Known Issues, Limitations, and Workarounds
Cloud Agent for macOS Intel may get unresponsive during post-update restart for endpoints where Endpoint Protection Platform (EPP) is enabled.
To resume the normal agent operations, restart the Cloud Agent manually using the following command:
sudo /Applications/QualysCloudAgent.app/Contents/MacOS/qagent_restart.sh