CVE-2018-11134
CVE-2018-11134 affects Quest KACE System Management Appliance 8.0 (Build 8.0.318). The issue is a privilege-escalation vector in the Sudo Server component: a command available to the web server user could change other users’ passwords, including the kace_support account, which has full sudo privi...