Vulnerability Management Report

The vulnerability management report provides a comprehensive dashboard view of operating system and third-party software vulnerabilities across your Apple devices and UEM-supported apps. This report helps identify security risks and prioritize remediation efforts. Risk status fluctuates over time as new vulnerabilities in operating systems and other software are discovered and fixed. Devices with exploitable vulnerabilities present a risk to an organization's infrastructure and data. Devices must meet the following requirements to fully utilize the vulnerability management report:

• macOS, iOS, or iPadOS
• Network security service capability enabled in the activation profile used to enroll the devices
• A configured UEM Connect integration
  Note:Jamf Trust can be used in place of a UEM integration, but in this configuration only OS-related threats will be detected. The report will not include vulnerable apps.

A vulnerability analysis initiates when Jamf Security Cloud receives device software inventory updates. For managed devices, this occurs during a UEM sync or at a custom frequency configured in the UEM Connect settings. For unmanaged devices, this occurs during Jamf Trust app device status updates, which vary in frequency based on device activity, and is limited to OS-based threats. The vulnerability management report analyzes vulnerabilities from multiple sources, including:

• Common vulnerabilities and exposures (CVEs) published in the National Institute of Standards and Technology's National Vulnerability Database
• Vulnerabilities discovered by Jamf Threat Labs
• Apple's Rapid Security Response updates