Lucene search
K

12 matches found

The Hacker News
The Hacker News
added 2026/04/21 6:23 a.m.14 views

CISA Adds 8 Exploited Flaws to KEV, Sets April-May 2026 Federal Deadlines

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Monday added eight new vulnerabilities to its Known Exploited Vulnerabilities KEV catalog, including three flaws impacting Cisco Catalyst SD-WAN Manager, citing evidence of active exploitation. The list of vulnerabilities is as...

10CVSS7.7AI score0.99991EPSS
Exploits26
Tenable Nessus
Tenable Nessus
added 2026/04/16 12:0 a.m.4 views

Quest KACE SMA 13.0.x < 13.0.385 / 13.1.x < 13.1.81 / 13.2.x < 13.2.183 / 14.0.x < 14.0.341 / 14.1.x < 14.1.101 Multiple Vulnerabilities

The version of Quest KACE Systems Management Appliance SMA running on the remote host is 13.0.x prior to 13.0.385, 13.1.x prior to 13.1.81, 13.2.x prior to 13.2.183, 14.0.x prior to 14.0.341, or 14.1.x prior to 14.1.101. It is, therefore, affected by multiple vulnerabilities, including: - An...

10CVSS7.5AI score0.02417EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2026/03/23 6:15 a.m.7 views

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems

Threat actors are suspected to be exploiting a maximum-severity security flaw impacting Quest KACE Systems Management Appliance SMA, according to Arctic Wolf. The cybersecurity company said it observed malicious activity starting the week of March 9, 2026, in customer environments that's consiste...

10CVSS6AI score0.02417EPSS
Exploits0
NVD
NVD
added 2023/03/01 12:15 a.m.26 views

CVE-2022-38220

An XSS vulnerability exists within Quest KACE Systems Management Appliance SMA through 12.1 that may allow remote injection of arbitrary web script or HTML...

6.1CVSS6.3AI score0.0068EPSS
Exploits0References2
NVD
NVD
added 2022/08/02 10:15 p.m.27 views

CVE-2022-29807

A SQL injection vulnerability exists within Quest KACE Systems Management Appliance SMA through 12.0 that can allow for remote code execution via downloadagentinstaller.php...

9.8CVSS0.0109EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/08/02 9:42 p.m.31 views

CVE-2022-29807

A SQL injection vulnerability exists within Quest KACE Systems Management Appliance SMA through 12.0 that can allow for remote code execution via downloadagentinstaller.php...

10AI score0.0109EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/08/02 9:35 p.m.19 views

CVE-2022-29808

In Quest KACE Systems Management Appliance SMA through 12.0, predictable token generation occurs when appliance linking is enabled...

7.8AI score0.00624EPSS
Exploits0References2
CNVD
CNVD
added 2019/11/14 12:0 a.m.2 views

Quest Software KACE Systems Management Appliance Server Center Cross-Site Scripting Vulnerability (CNVD-2020-20168)

Quest Software KACE Systems Management Appliance SMA is a systems management appliance from Quest Software, USA. It supports IT asset management, server management and monitoring, software license management, patch management, etc. Server Center is one of the help desk programs. A cross-site...

5.4CVSS6.4AI score0.00781EPSS
Exploits0References1
CNVD
CNVD
added 2019/11/08 12:0 a.m.4 views

Quest Software KACE Systems Management Appliance Server Center Cross-Site Scripting Vulnerability (CNVD-2020-20173)

Quest Software KACE Systems Management Appliance SMA is a systems management appliance from Quest Software, USA. It supports IT asset management, server management and monitoring, software license management, patch management, etc. Server Center is one of the help desk programs. A cross-site...

6.1CVSS6.4AI score0.00961EPSS
Exploits0References1
CNVD
CNVD
added 2019/11/08 12:0 a.m.2 views

Quest Software KACE Systems Management Appliance Server Center SQL Injection Vulnerability (CNVD-2020-20170)

Quest Software KACE Systems Management Appliance SMA is a systems management appliance from Quest Software, USA. It supports IT asset management, server management and monitoring, software license management, patch management, etc. Server Center is one of the help desk programs. Quest Software KA...

9.8CVSS7.8AI score0.01053EPSS
Exploits0References1
CNVD
CNVD
added 2019/11/08 12:0 a.m.3 views

Quest Software KACE Systems Management Appliance Server Center SQL Injection Vulnerability (CNVD-2020-20171)

Quest Software KACE Systems Management Appliance SMA is a systems management appliance from Quest Software, USA. It supports IT asset management, server management and monitoring, software license management, patch management, etc. Server Center is one of the help desk programs. Quest Software KA...

8.8CVSS7.8AI score0.01235EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2017/08/09 12:0 a.m.28 views

Quest / Dell KACE Systems Management Appliance (SMA) 6.4.120822 - 7.2.101 SQLi Vulnerability

An SQL injection SQLi exists in Quest / Dell KACE Systems Management Appliance SMA. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

9.8CVSS10AI score0.01226EPSS
Exploits0References1
Rows per page
Query Builder