Vulnerable jQuery Libraries Discovered Jamf Pro OnPrem 10.19

MichaelH
New Contributor III

Anyone got any info on this?
We had an external IP Range pen test done and this vulnerability was found in JAMF jQuery a JavaScript library. It makes things like HTML document traversal and manipulation, event handling, animation and Ajax much simpler with an easy-to-use API that works across a multitude of browsers.

Any help or guidance is appreciated

3 REPLIES 3

boberito
Valued Contributor

Maybe try https://www.jamf.com/security/vulnerability-disclosure/ instead....

MichaelH
New Contributor III

@boberito Thanks for this, I will log it when I have more details, however, I am unsure on what this impact is.

rgonzal
New Contributor

Do you mean this one: https://nvd.nist.gov/vuln/detail/CVE-2012-6708 ?
our security scans detected it while running 10.15.1 but it seems no to be fixed yet. It was already referenced as Product Issue PI-007381, not sure if there's been an update on this already.