Resolved Issues

Jamf Pro Release Notes 11.20.0
Solution
Application
Content Type
Technical Documentation
Release Notes
Utilities & Services
version
11.20.0
ft:locale
en-US
vrm_version
11.20.0

Note:

Some resolved issues in this release may have been addressed in a previous maintenance release.

Jamf Pro Server: Security Issues

Jamf provides the CVE-ID for security issues with high or critical severity when possible.

  • [PI137106] Fixed: The Jamf Pro installers include Spring Framework 6.2.4, which includes vulnerabilities CVE-2025-41234 and CVE-2025-22233.

  • [PI138116] Fixed: A broken access control issue when creating accounts via the Jamf Pro API.

  • [PI138128] Fixed: A known vulnerability in a third-party library (CVE-2025-48976).

  • [PI138357] Fixed: A known vulnerability in a third-party library (CVE-2025-48924).

  • [PI138965] Fixed: A known vulnerability in a third-party library (CVE-2025-5878).

Jamf Pro Server

  • [PI109922] Fixed: Mobile devices enrolled via PreStage enrollment revert to the device name specified in the Mobile Device Names payload when the device name is changed in Jamf Pro and the Renew MDM Profile command is sent.

  • [PI118278] Fixed: Disabling and re-enabling the Jamf Cloud Distribution Service (JCDS) by changing the Content Delivery Network setting from "Jamf Cloud" to "None" and back can permanently delete all packages.

    When changing the Content Delivery Network setting from Jamf Cloud to another CDN in Jamf Pro 11.20.0 or later, the system prompts you to confirm this choice and warns that all content will be deleted before you can proceed.

  • [PI122660] Fixed: If an orphaned supporting configuration profile exists in the database for certain apps, the orphaned profile may prevent administrators from creating an App Installers deployment for that app (e.g., Microsoft Edge).

  • [PI135178] Fixed: In a computer configuration profile with a Restrictions payload configured to allow integration with external intelligence services, users may be prevented from enabling ChatGPT on computers in scope. This is due to the profile containing the key allowedExternalIntelligenceWorkspaceIDs, even if the corresponding setting is not selected.

  • [PI135788] Fixed: Applications installed via the Jamf App Catalog in Self Service for macOS may fail to launch, despite appearing as if they had installed successfully in Self Service. Package-based policies and Mac App Store apps are unaffected by this issue.

  • [PI136483] Fixed: Downloaded advanced computer search results display an incorrect date of "1970-01-21" in the "Computer Last Logged In User Binary Timestamp" column.

  • [PI139029] Fixed: Modifications to smart groups are unable to be saved when the group is a dependency of a blueprint and impact alert notifications are enabled.

  • [PI139036] Fixed: Jamf Pro fails to save advanced searches that use certain criteria.

  • [PI139037] Fixed: After editing and saving a configuration profile with a SCEP payload, Jamf Pro sets the Redistribute Profile setting to "Never" regardless of the chosen option, potentially causing issues in environments that depend on certificate distribution to authenticate with Wi-Fi or VPN.