Home

Description

The StrongDM macOS client incorrectly processed JSON-formatted messages. Attackers could potentially modify macOS system configuration by crafting a malicious JSON message.

PUBLISHED Reserved 2025-06-16 | Published 2025-08-20 | Updated 2025-08-20 | Assigner StrongDM




HIGH: 7.0CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Product status

Default status
unaffected

Any version
affected

References

security.strongdm.com/...6fde839-9388-4361-8d3b-9baa7b2de2ed

cve.org (CVE-2025-6183)

nvd.nist.gov (CVE-2025-6183)

Download JSON