3 matches found
CVE-2021-44031
An issue was discovered in Quest KACE Desktop Authority before 11.2. /dacomponentui/profiles/profileitems/outlooksettings/Insertimage.aspx contains a vulnerability that could allow pre-authentication remote code execution. An attacker could upload a .ASP file to reside at /images/GUID/filename...
Quest KACE Desktop Authority 代码问题漏洞
Quest KACE Desktop Authority is a desktop management software from Quest, Inc. A deserialized code execution vulnerability exists in Quest KACE Desktop Authority, which can be exploited by remote attackers to submit ad hoc requests that can execute arbitrary code in the application context...
Quest KACE Desktop Authority 跨站脚本漏洞
Quest KACE Desktop Authority is a desktop management software from Quest, Inc. A cross-site scripting vulnerability exists in Quest KACE Desktop Authority, which can be exploited by remote attackers to submit special requests that can cause untrusted HTML to reach jQuery's jQuery. htmlPrefilter...