Опубликовано: 28 июн. 2024
Источник: github
Github: Не прошло ревью
CVSS4: 7.3
CVSS3: 7.8
Описание
The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.
The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2024-4395
- https://github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdf
- https://github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkg
- https://khronokernel.com/macos/2024/05/01/CVE-2024-4395.html
- https://trusted.jamf.com/docs/establishing-compliance-baselines#support
Связанные уязвимости
CVSS3: 7.8
nvd
больше 1 года назад
The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.