JumpCloud Remote Assist Flaw Lets Users Gain Full Control of...

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/SC:N/VI:H/SI:N/VA:H/SA:N

Description

A critical vulnerability (CVE-2025-34352) found by XM Cyber in the JumpCloud Remote Assist for Windows agent allows local users to gain full SYSTEM privileges. Businesses must update to version 0.317.0 or later immediately to patch the high-severity flaw.

Visit Original Source

Basic Information

ID HACKREAD:6284BC8D8B85EB117CDD674EFC11374E

Published Dec 16, 2025 at 13:42

{
    "lastseen": "2025-12-16T14:05:07",
    "description": "A critical vulnerability (CVE-2025-34352) found by XM Cyber in the JumpCloud Remote Assist for Windows agent allows local users to gain full SYSTEM privileges. Businesses must update to version 0.317.0 or later immediately to patch the high-severity flaw.",
    "published": "2025-12-16T13:42:07",
    "modified": "2025-12-16T13:42:07",
    "type": "hackread",
    "title": "JumpCloud Remote Assist Flaw Lets Users Gain Full Control of Company Devices",
    "source": "",
    "references": "",
    "id": "HACKREAD:6284BC8D8B85EB117CDD674EFC11374E",
    "bulletinFamily": "blog",
    "cwe": null,
    "cvelist": [
        "CVE-2025-34352"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/SC:N/VI:H/SI:N/VA:H/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://hackread.com/jumpcloud-remote-assist-flaw-full-devices-control/",
    "category_name": "News",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

JumpCloud Remote Assist Flaw Lets Users Gain Full Control of Company Devices_HACKREAD:6284BC8D8B85EB117CDD674EFC11374E

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply