ГлавнаяУязвимости → CVE-2024-4395
7.8высокая

CVE-2024-4395

Описание

The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.

CVSS
Балл7.8 — высокая
ВекторCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdfhttps://github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkghttps://khronokernel.com/macos/2024/05/01/CVE-2024-4395.htmlhttps://trusted.jamf.com/docs/establishing-compliance-baselines#supporthttps://github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdfhttps://github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkghttps://khronokernel.com/macos/2024/05/01/CVE-2024-4395.htmlhttps://trusted.jamf.com/docs/establishing-compliance-baselines#support