Skip to content

Latest commit

 

History

History
34 lines (23 loc) · 719 Bytes

CVE-2022-29564.md

File metadata and controls

34 lines (23 loc) · 719 Bytes

CVE-2022-29564

Description
The Jamf Private Access contained Incorrect Access Control vulnerability, aka WND-44801, which allowed unauthorized user to reach system in internal infrastructure.

Vulnerability Type
Incorrect Access Control

Vendor of Product
Jamf

Affected Product / Code Base
Private Access - Fixed in 2022-05-16

Affected Component
NAT gateway

Attack Type
Remote

Impact
Information Disclosure

Attack Vectors
To exploit vulnerability attacker has to be able to connect to JPA network

Has vendor confirmed or acknowledged the vulnerability?
Yes

Discoverer
Peter Ivezaj, President - Digital Upkeep

Reference
https://www.jamf.com