KACE K1000 Remote Code Execution

2019-04-16T00:00:00
ID SAINT:70A84B5681C099BB6D11116BF71058DF
Type saint
Reporter SAINT Corporation
Modified 2019-04-16T00:00:00

Description

Added: 04/16/2019

Background

KACE Systems Management Appliance manages, secures, and services network-connected devices.

Problem

A vulnerability in KACE Systems Management Appliance K1000 could allow unauthenticated command execution.

Resolution

Upgrade to the latest version of your KACE Systems Management Appliance K1000.

References

<https://www.rcesecurity.com/2019/04/dell-kace-k1000-remote-code-execution-the-story-of-bug-k1-18652/>

Limitations

Platforms

Linux