Vulnerabilities (CVE)

Filtered by vendor Jamf Subscribe

Filtered by product Jamf

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-35037	1 Jamf	1 Jamf	2021-07-22	5.8 MEDIUM	6.1 MEDIUM
Jamf Pro before 10.30.1 allows for an unvalidated URL redirect vulnerability affecting Jamf Pro customers who host their environments on-premises. An attacker may craft a URL that appears to be for a customer's Jamf Pro instance, but when clicked will forward a user to an arbitrary URL that may be malicious. This is tracked via Jamf with the following ID: PI-009822
CVE-2021-30125	1 Jamf	1 Jamf	2021-04-08	4.3 MEDIUM	6.1 MEDIUM
Jamf Pro before 10.28.0 allows XSS related to inventory history, aka PI-009376.