Security Advisory

CVE-2019-9146

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-02-25 18:00:00

Last updated 2024-08-04 21:38:46

Assigner mitre

State PUBLISHED

Description

Jamf Self Service 10.9.0 allows man-in-the-middle attackers to obtain a root shell by leveraging the "publish Bash shell scripts" feature to insert "/Applications/Utilities/Terminal app/Contents/MacOS/Terminal" into the TCP data stream.

← Browse all CVEs View on cve.org ↗