Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for Jamf Compliance Editor by JAMF

    CVE-2024-4395 (GCVE-0-2024-4395)

    Vulnerability from nvd – Published: 2024-06-27 21:28 – Updated: 2024-08-01 20:40
    VLAI
    Title
    Lack of Client Validation in Jamf Compliance Editor's Helper Service May Result in Privilege Escalation
    Summary
    The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    Impacted products
    Vendor Product Version
    JAMF Jamf Compliance Editor Affected: 1 , < 1.3.1 (custom)
    Create a notification for this product.
    jamf jamf_compliance_editor Affected: 1 , < 1.3.1 (custom)
        cpe:2.3:a:jamf:jamf_compliance_editor:1.3.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-05-01 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:jamf:jamf_compliance_editor:1.3.1:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "jamf_compliance_editor",
                "vendor": "jamf",
                "versions": [
                  {
                    "lessThan": "1.3.1",
                    "status": "affected",
                    "version": "1",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-4395",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-06-28T14:38:43.447648Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-269",
                    "description": "CWE-269 Improper Privilege Management",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-28T14:44:50.624Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T20:40:47.140Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "technical-description",
                  "third-party-advisory",
                  "x_transferred"
                ],
                "url": "https://khronokernel.com/macos/2024/05/01/CVE-2024-4395.html"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "release-notes",
                  "x_transferred"
                ],
                "url": "https://github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdf"
              },
              {
                "tags": [
                  "product",
                  "patch",
                  "x_transferred"
                ],
                "url": "https://trusted.jamf.com/docs/establishing-compliance-baselines#support"
              },
              {
                "tags": [
                  "patch",
                  "x_transferred"
                ],
                "url": "https://github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkg"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS"
              ],
              "product": "Jamf Compliance Editor",
              "vendor": "JAMF",
              "versions": [
                {
                  "lessThan": "1.3.1",
                  "status": "affected",
                  "version": "1",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2024-05-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eThe XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.\u003c/p\u003e"
                }
              ],
              "value": "The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NO",
                "Recovery": "USER",
                "Safety": "NEGLIGIBLE",
                "attackComplexity": "HIGH",
                "attackRequirements": "PRESENT",
                "attackVector": "LOCAL",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "privilegesRequired": "LOW",
                "providerUrgency": "GREEN",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "ACTIVE",
                "valueDensity": "DIFFUSE",
                "vectorString": "CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/S:N/AU:N/R:U/V:D/RE:M/U:Green",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-06-27T21:28:35.198Z",
            "orgId": "67325c3f-c596-46c5-a235-e1a1e73abe4e",
            "shortName": "JAMF"
          },
          "references": [
            {
              "tags": [
                "technical-description",
                "third-party-advisory"
              ],
              "url": "https://khronokernel.com/macos/2024/05/01/CVE-2024-4395.html"
            },
            {
              "tags": [
                "vendor-advisory",
                "release-notes"
              ],
              "url": "https://github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdf"
            },
            {
              "tags": [
                "product",
                "patch"
              ],
              "url": "https://trusted.jamf.com/docs/establishing-compliance-baselines#support"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkg"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Upgrade to Jamf Compliance Editor 1.3.1"
                }
              ],
              "value": "Upgrade to Jamf Compliance Editor 1.3.1"
            }
          ],
          "source": {
            "discovery": "EXTERNAL"
          },
          "title": "Lack of Client Validation in Jamf Compliance Editor\u0027s Helper Service May Result in Privilege Escalation",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "67325c3f-c596-46c5-a235-e1a1e73abe4e",
        "assignerShortName": "JAMF",
        "cveId": "CVE-2024-4395",
        "datePublished": "2024-06-27T21:28:35.198Z",
        "dateReserved": "2024-05-01T17:32:09.801Z",
        "dateUpdated": "2024-08-01T20:40:47.140Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-4395 (GCVE-0-2024-4395)

    Vulnerability from cvelistv5 – Published: 2024-06-27 21:28 – Updated: 2024-08-01 20:40
    VLAI
    Title
    Lack of Client Validation in Jamf Compliance Editor's Helper Service May Result in Privilege Escalation
    Summary
    The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-269 - Improper Privilege Management
    Assigner
    Impacted products
    Vendor Product Version
    JAMF Jamf Compliance Editor Affected: 1 , < 1.3.1 (custom)
    Create a notification for this product.
    jamf jamf_compliance_editor Affected: 1 , < 1.3.1 (custom)
        cpe:2.3:a:jamf:jamf_compliance_editor:1.3.1:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-05-01 07:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:jamf:jamf_compliance_editor:1.3.1:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "jamf_compliance_editor",
                "vendor": "jamf",
                "versions": [
                  {
                    "lessThan": "1.3.1",
                    "status": "affected",
                    "version": "1",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "cvssV3_1": {
                  "attackComplexity": "LOW",
                  "attackVector": "LOCAL",
                  "availabilityImpact": "HIGH",
                  "baseScore": 7.8,
                  "baseSeverity": "HIGH",
                  "confidentialityImpact": "HIGH",
                  "integrityImpact": "HIGH",
                  "privilegesRequired": "LOW",
                  "scope": "UNCHANGED",
                  "userInteraction": "NONE",
                  "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                  "version": "3.1"
                }
              },
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-4395",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-06-28T14:38:43.447648Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-269",
                    "description": "CWE-269 Improper Privilege Management",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-28T14:44:50.624Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T20:40:47.140Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "technical-description",
                  "third-party-advisory",
                  "x_transferred"
                ],
                "url": "https://khronokernel.com/macos/2024/05/01/CVE-2024-4395.html"
              },
              {
                "tags": [
                  "vendor-advisory",
                  "release-notes",
                  "x_transferred"
                ],
                "url": "https://github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdf"
              },
              {
                "tags": [
                  "product",
                  "patch",
                  "x_transferred"
                ],
                "url": "https://trusted.jamf.com/docs/establishing-compliance-baselines#support"
              },
              {
                "tags": [
                  "patch",
                  "x_transferred"
                ],
                "url": "https://github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkg"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS"
              ],
              "product": "Jamf Compliance Editor",
              "vendor": "JAMF",
              "versions": [
                {
                  "lessThan": "1.3.1",
                  "status": "affected",
                  "version": "1",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2024-05-01T07:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eThe XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.\u003c/p\u003e"
                }
              ],
              "value": "The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NO",
                "Recovery": "USER",
                "Safety": "NEGLIGIBLE",
                "attackComplexity": "HIGH",
                "attackRequirements": "PRESENT",
                "attackVector": "LOCAL",
                "baseScore": 7.3,
                "baseSeverity": "HIGH",
                "privilegesRequired": "LOW",
                "providerUrgency": "GREEN",
                "subAvailabilityImpact": "HIGH",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "ACTIVE",
                "valueDensity": "DIFFUSE",
                "vectorString": "CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/S:N/AU:N/R:U/V:D/RE:M/U:Green",
                "version": "4.0",
                "vulnAvailabilityImpact": "HIGH",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "HIGH",
                "vulnerabilityResponseEffort": "MODERATE"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-06-27T21:28:35.198Z",
            "orgId": "67325c3f-c596-46c5-a235-e1a1e73abe4e",
            "shortName": "JAMF"
          },
          "references": [
            {
              "tags": [
                "technical-description",
                "third-party-advisory"
              ],
              "url": "https://khronokernel.com/macos/2024/05/01/CVE-2024-4395.html"
            },
            {
              "tags": [
                "vendor-advisory",
                "release-notes"
              ],
              "url": "https://github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdf"
            },
            {
              "tags": [
                "product",
                "patch"
              ],
              "url": "https://trusted.jamf.com/docs/establishing-compliance-baselines#support"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkg"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Upgrade to Jamf Compliance Editor 1.3.1"
                }
              ],
              "value": "Upgrade to Jamf Compliance Editor 1.3.1"
            }
          ],
          "source": {
            "discovery": "EXTERNAL"
          },
          "title": "Lack of Client Validation in Jamf Compliance Editor\u0027s Helper Service May Result in Privilege Escalation",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "67325c3f-c596-46c5-a235-e1a1e73abe4e",
        "assignerShortName": "JAMF",
        "cveId": "CVE-2024-4395",
        "datePublished": "2024-06-27T21:28:35.198Z",
        "dateReserved": "2024-05-01T17:32:09.801Z",
        "dateUpdated": "2024-08-01T20:40:47.140Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }