Lucene search

67325c3f-c596-46c5-a235-e1a1e73abe4eCVE-2024-4395

HistoryJun 27, 2024 - 10:15 p.m.

CVE-2024-4395

2024-06-2722:15:10

67325c3f-c596-46c5-a235-e1a1e73abe4e

web.nvd.nist.gov

jamf compliance editor

xpc service

local privilege escalation

macos

7.3 High

CVSS4

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

ACTIVE

CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/SC:H/VI:H/SI:H/VA:H/SA:H/S:N/AU:N/U:Green/R:U/V:D/RE:M

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

15.7%

JSON

The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.

CNA Affected

[
  {
    "defaultStatus": "affected",
    "platforms": [
      "MacOS"
    ],
    "product": "Jamf Compliance Editor",
    "vendor": "JAMF",
    "versions": [
      {
        "lessThan": "1.3.1",
        "status": "affected",
        "version": "1",
        "versionType": "custom"
      }
    ]
  }
]

References

github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdf

github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkg

khronokernel.com/macos/2024/05/01/CVE-2024-4395.html

trusted.jamf.com/docs/establishing-compliance-baselines#support