CVE-2024-4395
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-4395
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-4395.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-4395
- Published
- 2024-06-27T22:15:10Z
- Modified
- 2025-10-21T12:33:35Z
- Severity
-
- 7.3 (High) CVSS_V4 - CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:M/U:Green CVSS Calculator
- Summary
- [none]
- Details
-
The XPC service within the audit functionality of Jamf Compliance Editor before version 1.3.1 on macOS can lead to local privilege escalation.
- References
-
- https://github.com/Jamf-Concepts/jamf-compliance-editor/raw/v1.3.1/Jamf%20Compliance%20Editor%20-%20User%20Guide.pdf
- https://github.com/Jamf-Concepts/jamf-compliance-editor/releases/download/v1.3.1/JamfComplianceEditor.v1.3.1.pkg
- https://khronokernel.com/macos/2024/05/01/CVE-2024-4395.html
- https://trusted.jamf.com/docs/establishing-compliance-baselines#support