CVE-2022-29564
Description
The Jamf Private Access contained Incorrect Access Control vulnerability, aka WND-44801, which allowed unauthorized user to reach system in internal infrastructure.
Vulnerability Type
Incorrect Access Control
Vendor of Product
Jamf
Affected Product / Code Base
Private Access - Fixed in 2022-05-16
Affected Component
NAT gateway
Attack Type
Remote
Impact
Information Disclosure
Attack Vectors
To exploit vulnerability attacker has to be able to connect to JPA network
Has vendor confirmed or acknowledged the vulnerability?
Yes
Discoverer
Peter Ivezaj, President - Digital Upkeep
Reference
https://www.jamf.com