CVE-2023-33254
The CVE-2023-33254 entry refers to Quest KACE Systems Deployment and Remote Site appliances 9.0.146, where LDAP bind credentials are exposed. The issue arises when an authenticated attacker edits user-authentication settings to point to an attacker-controlled LDAP server, then uses Test Settings ...