Help

Security issue Jamf Connect- Potential to break login to gain browser access, exfil data

jhwang
New Contributor

Posted on ‎03-14-2024 07:58 AM

Was able to do the following while exploring Microsoft Entra Github login option.
Has anyone encountered this? Any solutions out there to prevent?

 

jamfconnect-01.jpgjameconnect-02.jpg

0 Kudos
2 REPLIES 2

AJPinto
Honored Contributor II

Posted on ‎03-14-2024 11:03 AM

This would be a Microsoft Entra Problem not Jamf Connect. If Microsoft is presenting a full navigable website, that is on them.

0 Kudos

OGClayton
New Contributor III
New Contributor III

Posted on ‎03-15-2024 02:59 AM

You can disable sign in with Github through Entra. That should be off organization wide. 

0 Kudos