Impact
The vulnerability is a local privilege escalation in the Kandji Agent before version 4.7.5 (5374), arising from a client validation gap that allows a local attacker to invoke restricted agent functionality. The CVE does not explicitly state the specific actions that can be performed once privileges are granted. Based on the description, it is inferred that the attacker could potentially acquire system‑level capabilities such as modifying system settings or installing software, but the exact scope is not defined. The weakness corresponds to CWE‑269.
Affected Systems
Iru, Inc Kandji Agent, versions prior to 4.7.5 (5374). The issue is fixed in the 4.7.5 release and later.
Risk and Exploitability
The CVSS score of 8.4 indicates high severity, but the EPSS score of less than 1% shows a very low probability of exploitation at this time. The vulnerability is not listed in CISA’s KEV catalog, suggesting it has not yet been widely exploited. Because the attack vector is local, an adversary would need physical or local software access to the device to exploit the gap.
OpenCVE Enrichment