Local Privilege Escalation Vulnerability in Jamf Compliance Editor
CVE-2024-4395

Currently unrated

Key Information:

Vendor: Jamf
Status: Jamf Compliance Editor
Vendor: CVE Published:; 27 June 2024

🔔 Create Jamf Vulnerability Alert

What is CVE-2024-4395?

The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.

Affected Version(s)

Jamf Compliance Editor MacOS 1

References

https://khronokernel.com/macos/2024/05/01/CVE-2024-4395.html

technical-descriptionthird-party-advisory

https://github.com/Jamf-Concepts/jamf-compliance-editor/r...

vendor-advisoryrelease-notes

https://trusted.jamf.com/docs/establishing-compliance-bas...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 27, 2024

.