Lucene search

MitreVULNRICHMENT:CVE-2024-23774

HistoryApr 30, 2024 - 12:00 a.m.

CVE-2024-23774

2024-04-3000:00:00

mitre

github.com

quest kace agent

windows

search path vulnerability

local attackers

nt authority\system privileges

AI Score

7.2

Confidence

High

EPSS

Percentile

10.7%

SSVC

Exploitation

none

Automatable

Technical Impact

total

JSON

An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An unquoted Windows search path vulnerability exists in the KSchedulerSvc.exe and AMPTools.exe components. This allows local attackers to execute code of their choice with NT Authority\SYSTEM privileges.

ADP Affected

[
  {
    "cpes": [
      "cpe:2.3:a:quest:kace_systems_management_appliance:*:*:*:*:*:*:*:*"
    ],
    "vendor": "quest",
    "product": "kace_systems_management_appliance",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "13.1.25",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "0",
        "lessThan": "13.2.24",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

References

support.quest.com/kb/4375402/quest-response-to-kace-sma-agent-vulnerabilities-cve-2024-23772-cve-2024-23773-cve-2024-23774

www.quest.com/kace/