CVE-2021-35037

Published: Jul 12, 2021

Modified: Aug 4, 2024

PUBLISHED

Description

Jamf Pro before 10.30.1 allows for an unvalidated URL redirect vulnerability affecting Jamf Pro customers who host their environments on-premises. An attacker may craft a URL that appears to be for a customer's Jamf Pro instance, but when clicked will forward a user to an arbitrary URL that may be malicious. This is tracked via Jamf with the following ID: PI-009822

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://www.jamf.com/resources/product-documentation/jamf-pro-release-notes/

x_refsource_MISC

https://www.jamf.com/jamf-nation/discussions/39219/jamf-pro-10-30-1-security-upgrade

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-35037

Description

Affected Products

References