6 matches found
CVE-2024-23774
An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An unquoted Windows search path vulnerability exists in the KSchedulerSvc.exe and AMPTools.exe components. This allows local attackers to execute code of their choice with NT Authority\SYSTEM privileges...
CVE-2024-23773
An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An Arbitrary file delete vulnerability exists in the KSchedulerSvc.exe component. Local attackers can delete any file of their choice with NT Authority\SYSTEM privileges...
CVE-2024-23773
An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An Arbitrary file delete vulnerability exists in the KSchedulerSvc.exe component. Local attackers can delete any file of their choice with NT Authority\SYSTEM privileges...
CVE-2024-23773
An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An Arbitrary file delete vulnerability exists in the KSchedulerSvc.exe component. Local attackers can delete any file of their choice with NT Authority\SYSTEM privileges...
PT-2024-20078 · Quest · Quest Kace Agent For Windows
Name of the Vulnerable Software and Affected Versions: Quest KACE Agent for Windows versions 12.0.38 through 13.1.23.0 Description: An unquoted Windows search path issue exists in the KSchedulerSvc.exe and AMPTools.exe components, allowing local attackers to execute code of their choice with NT...
CVE-2024-23773
CVE-2024-23773 concerns Quest KACE Agent for Windows 12.0.38 and 13.1.23.0, with an Arbitrary file delete vulnerability in the KSchedulerSvc.exe component. Local attackers can delete any file using NT AUTHORITY\SYSTEM privileges. This is part of a family of related issues for the same agent (e.g....