Lucene search
K

5 matches found

HackRead
HackRead
added 2025/12/16 1:42 p.m.5 views

JumpCloud Remote Assist Flaw Lets Users Gain Full Control of Company Devices

A critical vulnerability CVE-2025-34352 found by XM Cyber in the JumpCloud Remote Assist for Windows agent allows local users to gain full SYSTEM privileges. Businesses must update to version 0.317.0 or later immediately to patch the high-severity flaw...

8.5CVSS7.1AI score0.00165EPSS
Exploits0
EUVD
EUVD
added 2025/12/02 9:31 p.m.5 views

EUVD-2025-200311

JumpCloud Remote Assist for Windows versions prior to 0.317.0 include an uninstaller that is invoked by the JumpCloud Windows Agent as NT AUTHORITY\SYSTEM during agent uninstall or update operations. The Remote Assist uninstaller performs privileged create, write, execute, and delete actions on...

8.5CVSS6.3AI score0.00165EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/02 6:39 p.m.10 views

CVE-2025-34352 JumpCloud Remote Assist < 0.317.0 Arbitrary File Write/Delete via Insecure Temp Directory

JumpCloud Remote Assist for Windows versions prior to 0.317.0 include an uninstaller that is invoked by the JumpCloud Windows Agent as NT AUTHORITY\SYSTEM during agent uninstall or update operations. The Remote Assist uninstaller performs privileged create, write, execute, and delete actions on...

8.5CVSS0.00165EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/02 6:39 p.m.3 views

CVE-2025-34352 JumpCloud Remote Assist < 0.317.0 Arbitrary File Write/Delete via Insecure Temp Directory

JumpCloud Remote Assist for Windows versions prior to 0.317.0 include an uninstaller that is invoked by the JumpCloud Windows Agent as NT AUTHORITY\SYSTEM during agent uninstall or update operations. The Remote Assist uninstaller performs privileged create, write, execute, and delete actions on...

8.5CVSS6.4AI score0.00165EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/02 12:0 a.m.3 views

JumpCloud Remote Assist 安全漏洞

JumpCloud Remote Assist is a remote access module from JumpCloud USA. A security vulnerability exists in JumpCloud Remote Assist versions prior to 0.317.0 that stems from the uninstaller performing privileged operations without verifying directory trust, which could result in arbitrary file write...

8.5CVSS6.7AI score0.00165EPSS
Exploits0References4
Rows per page
Query Builder