List of Jamf Nation Products & Log4j Vulnerability

Jamf nation one of the largest Apple Enterprise Management companies has been also affected by the Log4j Vulnerability that was recently disclosed. Though most of the products are not vulnerable, couple of critical products like Jamf Pro (Both OnPremise and Cloud) versions got affected by this vulnerability. Here is the list of Jamf nation products that are affected/Not affected by the vulnerability


Jamf ProductVersionsStatus
Jamf Cloud AllVulnerableFixed
Jamf Pro (hosted on-prem)< 10.34.1See notesFixed
Health Care ListenerAllNot VulnerableNot Needed
Jamf ConnectAllNot Vulnerable Not Needed
Jamf Data PolicyAllNot Vulnerable Not Needed
Jamf Infrastructure ManagerAllNot Vulnerable Not Needed
Jamf NowAllNot Vulnerable Not Needed
Jamf Private AccessAllNot Vulnerable Not Needed
Jamf ProtectAllNot Vulnerable Not Needed
Jamf SchoolAllNot Vulnerable Not Needed
Jamf Threat DefenseAllNot Vulnerable Not Needed
Source: https://community.jamf.com/t5/jamf-pro/third-party-security-issue/td-p/253740

Jamf Pro: Team has released 10.34.1 for Jamf Pro to fix the vulnerability.There is also a manual mitigation where you can update the affected log4j versions manually, incase of updating it like that the future versions won’t be affected


Shan

I am a  Technical Architect who dabbles with different languages and technologies

You may also like...