Lucene search
K

EUVD-2025-19034

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType 
euvd
 euvd
🔗 euvd.enisa.europa.eu👁 8 Views

Quest KACE Systems Management Appliance has a flaw allowing users to bypass two-factor authentication.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
BDU FSTEC
The vulnerability of the Quest KACE Systems Management Appliance’s tool for comprehensive network device management, related to authentication procedures that have flaws, allows attackers to bypass the authentication process.
3 Sep 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of the Quest KACE Systems Management Appliance (SMA) tool, which allows for bypassing the authentication process by using an alternative path or channel, enables attackers to circumvent the authentication procedures.
6 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of the Quest KACE Systems Management Appliance’s tool for comprehensive network device management, related to errors in verifying cryptographic signatures, allows a perpetrator to upload backup files into the system.
6 Jan 202600:00
bdu_fstec
BDU FSTEC
The vulnerability of the Quest KACE Systems Management Appliance’s tool for comprehensive network device management lies in the lack of authentication for critical functions. This allows attackers to trigger a service failure.
6 Jan 202600:00
bdu_fstec
Circl
CVE-2025-32975
24 Jun 202503:29
circl
Circl
CVE-2025-32976
24 Jun 202503:29
circl
Circl
CVE-2025-32977
24 Jun 202503:57
circl
Circl
CVE-2025-32978
24 Jun 202503:57
circl
CISA KEV Catalog
Quest KACE Systems Management Appliance (SMA) Improper Authentication Vulnerability
20 Apr 202600:00
cisa_kev
CISA
CISA Adds Eight Known Exploited Vulnerabilities to Catalog
20 Apr 202612:00
cisa
Rows per page
[
  {
    "enisaIdVendor": [
      {
        "id": "ed5f5af0-c0b3-39f4-9f39-bda0bde5a179",
        "vendor": {
          "name": "n/a"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "ec24489f-09a3-3bb9-9407-2336883649e5",
        "product": {
          "name": "n/a"
        },
        "product_version": "n/a"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

03 Oct 2025 20:07Current
6.2Medium risk
Vulners AI Score6.2
CVSS 3.110
EPSS0.02417
SSVC
8