JumpCloud Remote Assist Privilege Escalation Vulnerability (CVE-2025-34352)
Summary
Hide ▲
Show ▼
A privilege escalation vulnerability in JumpCloud Remote Assist for Windows allows local attackers to execute arbitrary operations with SYSTEM privileges during uninstall or update processes. The flaw, tracked as CVE-2025-34352 (CVSS 8.5), enables attackers to manipulate system files, leading to potential system takeover or denial-of-service conditions. The vulnerability was addressed in version 0.317.0 of JumpCloud Remote Assist.
Timeline
-
16.12.2025 13:39 1 articles · 6h ago
JumpCloud Remote Assist Privilege Escalation Vulnerability Patched
A privilege escalation vulnerability in JumpCloud Remote Assist for Windows, tracked as CVE-2025-34352, was disclosed. The flaw allows local attackers to execute arbitrary operations with SYSTEM privileges during uninstall or update processes. The vulnerability was addressed in version 0.317.0 of JumpCloud Remote Assist.
Show sources
- JumpCloud Remote Assist Vulnerability Can Expose Systems to Takeover — www.securityweek.com — 16.12.2025 13:39
Information Snippets
-
The vulnerability exists because the Remote Assist uninstaller performs privileged operations on a user-writable %TEMP% subdirectory without validating the directory's trustworthiness.
First reported: 16.12.2025 13:391 source, 1 articleShow sources
- JumpCloud Remote Assist Vulnerability Can Expose Systems to Takeover — www.securityweek.com — 16.12.2025 13:39
-
Attackers can pre-create the directory and use symbolic links or mount-point redirections to manipulate the uninstaller into performing operations on protected system files.
First reported: 16.12.2025 13:391 source, 1 articleShow sources
- JumpCloud Remote Assist Vulnerability Can Expose Systems to Takeover — www.securityweek.com — 16.12.2025 13:39
-
Exploitation can result in a Blue Screen of Death (BSOD) or a Time-of-Check to Time-of-Use (TOCTOU) race condition leading to arbitrary code execution.
First reported: 16.12.2025 13:391 source, 1 articleShow sources
- JumpCloud Remote Assist Vulnerability Can Expose Systems to Takeover — www.securityweek.com — 16.12.2025 13:39
-
The vulnerability was patched in JumpCloud Remote Assist for Windows version 0.317.0.
First reported: 16.12.2025 13:391 source, 1 articleShow sources
- JumpCloud Remote Assist Vulnerability Can Expose Systems to Takeover — www.securityweek.com — 16.12.2025 13:39