CVE-2025-26850 | Quest KACE Systems Management Appliance up to 14.0.96/14.1.18 Agent authorization (EUVD-2025-20096)

Inserito da Angelo Barbosa | Lug 5, 2025 | CVE

A vulnerability has been found in Quest KACE Systems Management Appliance up to 14.0.96/14.1.18 and classified as critical. This vulnerability affects unknown code of the component Agent. The manipulation leads to incorrect authorization.

This vulnerability was named CVE-2025-26850. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-26850 | Quest KACE Systems Management Appliance up to 14.0.96/14.1.18 Agent authorization (EUVD-2025-20096)

Post correlati

CVE-2024-28131 | sira EasyRange 1.41 uncontrolled search path

CVE-2024-4640 | Moxa OnCell G3150A-LTE up to 1.7.7 buffer overflow

CVE-2023-47415 | Cypress CTM-200 up to 2.7.1.5600 cli_text os command injection

CVE-2024-6479 | SIP Reviews Shortcode for WooCommerce Plugin up to 1.2.3 on WordPress sql injection