Apple Updates

Apple release context from the SOFA feed, with optional macOS fleet exposure from Jamf.

Apple Updates combines current release information from the Mac Admins SOFA feed with a separate, on-demand macOS fleet distribution read from Jamf. It is designed to help administrators connect Apple release context to their current fleet posture without inventing a generic risk score.

SOFA feedmacOS and iOS release contextOptional Jamf fleet exposure

What the screen includes

Latest macOS releases with recently fixed CVE counts and actively exploited CVE flags where the feed exposes them
Latest iOS / iPadOS release context from the same feed
An interactive macOS CVE browser for the selected major version
Optional macOS fleet OS exposure loaded from Jamf when you are connected and choose to load it

How fleet exposure is computed

Fleet exposure is based on the current Jamf macOS version distribution, not on direct CVE scanning of each device. The app loads the current macOS versions reported for managed computers and compares them against the SOFA release data for those versions.

What that number means

The fleet exposure summary is an estimate derived from the current macOS version distribution. It is useful for prioritization, but it is not a device-by-device exploitability verdict.

Permissions and network path

No Jamf permission is needed to read the SOFA feed itself.
Read Computers is required to load the macOS fleet distribution.
The SOFA feed is fetched directly over HTTPS from sofafeed.macadmins.io.

Coverage notes

The current fleet exposure view is computer-focused. It does not build an iPhone or iPad exposure distribution from Jamf mobile inventory.
If a proxy or firewall blocks the SOFA feed, release and CVE context will be unavailable until that network path is allowed.
The screen reflects returned Jamf OS versions. It does not prove device-side patch installation beyond what Jamf inventory currently reports.