Threat Level: green Handler on Duty: Jan Kopriva

SANS ISC: SANS Internet Storm Center VEX Vulnerability Details


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
VEXID-138278
Published 2021-12-01 01:15:00
Last Modified 2021-12-02 02:15:00
AKA CVE-2021-40809
Summary An issue was discovered in Jamf Pro before 10.32.0, aka PI-009921. An account can be granted incorrect privileges in response to authentication that uses specific sign-on workflows.
CVSS Score 6.5
CVSS
Access Vector Local Adjacent Network
Access Complexity Low Medium High
Authentication None Single Multiple
Confidentiality None Partial Complete
Integrity None Partial Complete
Availability None Partial Complete