The Dell KACE K2000 Systems Deployment Appliance 3.3.36822 and earlier contains a peinst CIFS share, which allows remote attackers to obtain sensitive information by reading the (1) unattend.xml or (2) sysprep.inf file, as demonstrated by reading a password.
CPE | Name | Operator | Version |
---|---|---|---|
kace_k2000_systems_deployment_appliance | le | 3.3.36822 |