Lucene search
K

5 matches found

Cvelist
Cvelist
added 2019/06/03 6:23 p.m.22 views

CVE-2018-5405 The Quest Kace K1000 Appliance is vulnerable to JavaScript injection.

The Quest Kace K1000 Appliance, versions prior to 9.0.270, allows an authenticated least privileged user with 'User Console Only' rights to potentially inject arbitrary JavaScript code on the tickets page. Script execution could allow a malicious user of the system to steal session cookies of oth...

6.8AI score0.03678EPSS
Exploits5References3
CVE
CVE
added 2019/06/03 6:23 p.m.125 views

CVE-2018-5405

CVE-2018-5405 affects Quest Kace K1000 Appliance (SMA) versions prior to 9.0.270. A authenticated, least-privileged user with ‘User Console Only’ rights can inject arbitrary JavaScript on the tickets page due to insufficient input neutralization, enabling potential session cookie theft and takeov...

5.4CVSS6.1AI score0.03678EPSS
Exploits5References3Affected Software1
exploitpack
exploitpack
added 2019/06/03 12:0 a.m.67 views

KACE System Management Appliance (SMA) 9.0.270 - Multiple Vulnerabilities

KACE System Management Appliance SMA 9.0.270 - Multiple Vulnerabilities Exploit Title: Dell Kace Appliance Multiple Vulnerabilities Date: 12/04/2018 Exploit Author: SlidingWindow, Twitter: @kapilkhot Vendor Homepage: https://www.quest.com/products/kace-systems-management-appliance/ Affected...

9.3CVSS0.5AI score0.12206EPSS
Exploits6
Circl
Circl
added 2019/06/03 12:0 a.m.12 views

CVE-2018-5405

creationtimestamp| type| source ---|---|--- 2019-06-03 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/46956...

5.4CVSS6.8AI score0.03678EPSS
Exploits5References1
Exploit DB
Exploit DB
added 2019/06/03 12:0 a.m.217 views

KACE System Management Appliance (SMA) < 9.0.270 - Multiple Vulnerabilities

Exploit Title: Dell Kace Appliance Multiple Vulnerabilities Date: 12/04/2018 Exploit Author: SlidingWindow, Twitter: @kapilkhot Vendor Homepage: https://www.quest.com/products/kace-systems-management-appliance/ Affected Versions: KACE SMA versions prior to 9.0.270 PATCH SEC201820180410 Tested on:...

9.3CVSS6.2AI score0.12206EPSS
Exploits6
Rows per page
Query Builder