Lucene search
K
QuestKace System Management Appliance

11 matches found

CVE
CVE
added 2018/05/31 6:0 p.m.1011 views

CVE-2018-11138

CVE-2018-11138 affects Quest KACE System Management Appliance 8.0.318 where the unauthenticated /common/download_agent_installer.php endpoint can be abused to execute arbitrary commands as the web server user. The Core Security advisory and multiple sources confirm remote code execution via unaut...

10CVSS9.4AI score0.91931EPSS
In wildWeb
CVE
CVE
added 2018/05/31 6:0 p.m.110 views

CVE-2018-11133

CVE-2018-11133 affects Quest KACE System Management Appliance 8.0.318. The vulnerability is a cross-site scripting flaw in the fmt parameter of /common/run_cross_report.php, enabling arbitrary JavaScript in users’ browsers (CWE-79). The issue is documented in multiple sources (NVD/Nucli, CIRCL, C...

6.1CVSS6.4AI score0.07271EPSS
Web
CVE
CVE
added 2018/05/31 6:0 p.m.69 views

CVE-2018-11134

CVE-2018-11134 affects Quest KACE System Management Appliance 8.0 (Build 8.0.318). The issue is a privilege-escalation vector in the Sudo Server component: a command available to the web server user could change other users’ passwords, including the kace_support account, which has full sudo privi...

9CVSS8.8AI score0.03016EPSS
CVE
CVE
added 2018/05/31 6:0 p.m.69 views

CVE-2018-11139

The CVE-2018-11139 entry describes a command injection in Quest KACE System Management Appliance 8.0.318 via the authenticated-accessible /common/ajax_email_connection_test.php endpoint. The vulnerability allows an authenticated user to inject commands through the unsanitized TEST_SERVER paramete...

9CVSS9AI score0.42917EPSS
Web
CVE
CVE
added 2018/05/31 6:0 p.m.67 views

CVE-2018-11132

CVE-2018-11132 is a command-injection vulnerability affecting Quest KACE System Management Appliance version 8.0.318. The issue resides in the message queue daemon, which runs with root privileges and allows a restricted command set; an input vector enables an attacker to append commands that are...

9CVSS8.9AI score0.18285EPSS
CVE
CVE
added 2018/05/31 6:0 p.m.59 views

CVE-2018-11136

CVE-2018-11136 affects Quest KACE System Management Appliance 8.0 (Build 8.0.318). The orgID parameter in /common/download_agent_installer.php is not sanitized, enabling unauthenticated SQL injection (blind time-based). Proof-of-concept demonstrated time delays; Core/CORE advisory and other sourc...

9.8CVSS9.2AI score0.01387EPSS
Web
CVE
CVE
added 2018/05/31 6:0 p.m.57 views

CVE-2018-11142

CVE-2018-11142 affects Quest KACE System Management Appliance 8.0.318. The vulnerability is in the web console: systemui/settings_network.php and systemui/settings_patching.php are accessible only from localhost, and an attacker can bypass this restriction by tampering with Host and X_Forwarded_F...

5.5CVSS6.2AI score0.00423EPSS
Web
CVE
CVE
added 2018/05/31 6:0 p.m.56 views

CVE-2018-11137

CVE-2018-11137 affects Quest KACE System Management Appliance 8.0 (Build 8.0.318). The vulnerability is a directory-traversal flaw in the /common/download_attachment.php script, where the checksum parameter can be crafted to read arbitrary files with www privileges (no administrator privileges re...

6.5CVSS7AI score0.06483EPSS
Web
CVE
CVE
added 2018/05/31 6:0 p.m.56 views

CVE-2018-11141

CVE-2018-11141 affects Quest KACE System Management Virtual Appliance 8.0.318. The vulnerability is a path traversal issue in the advisory/authored UI where the IMAGES_JSON and attachments_to_remove[] parameters can cause arbitrary file write and delete operations. Proof-of-concept details in the...

9.8CVSS8.9AI score0.02021EPSS
Web
CVE
CVE
added 2018/05/31 6:0 p.m.54 views

CVE-2018-11140

CVE-2018-11140 affects Quest KACE System Management Appliance 8.0.318. The vulnerability is an SQL injection in the /common/run_report.php script via the reportID parameter, which is not sanitized. Public PoCs show an error-based SQL injection that can retrieve database information (e.g., current...

9.8CVSS9.3AI score0.01387EPSS
Web
CVE
CVE
added 2018/05/31 6:0 p.m.52 views

CVE-2018-11135

CVE-2018-11135 concerns the Quest KACE System Management Appliance 8.0.318. An authenticated user can trigger a deserialization-based PHP object injection in the script /adminui/error_details.php, enabling arbitrary PHP object execution as described in the vulnerability notes. Core Security CORE-...

8.8CVSS8.6AI score0.02069EPSS
Web