CVE-2012-4051

Name of the Vulnerable Software and Affected Versions JAMF Casper Suite versions prior to 8.61

Description The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities in the editAccount.html file within the JAMF Software Server (JSS) interface. These vulnerabilities allow remote attackers to hijack the authentication of administrators, enabling them to perform unauthorized actions such as creating user accounts or changing passwords via a Save action.

Recommendations For versions prior to 8.61, update to version 8.61 or later to resolve the issue.