|
248891
|
5.5 |
MEDIUM
Local
|
quest
|
kace_system_management_appliance
|
The 'systemui/settings_network.php' and 'systemui/settings_patching.php' scripts in the Quest KACE System Management Appliance 8.0.318 are accessible only from localhost. This restriction can be bypa…
|
CWE-863
Incorrect Authorization
|
CVE-2018-11142
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248892
|
9.8 |
CRITICAL
Network
|
quest
|
kace_system_management_appliance
|
The 'IMAGES_JSON' and 'attachments_to_remove[]' parameters of the '/adminui/advisory.php' script in the Quest KACE System Management Virtual Appliance 8.0.318 can be abused to write and delete files …
|
CWE-22
Path Traversal
|
CVE-2018-11141
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248893
|
9.8 |
CRITICAL
Network
|
quest
|
kace_system_management_appliance
|
The 'reportID' parameter received by the '/common/run_report.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, an error-base…
|
CWE-89
SQL Injection
|
CVE-2018-11140
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248894
|
8.8 |
HIGH
Network
|
quest
|
kace_system_management_appliance
|
The '/common/ajax_email_connection_test.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by any authenticated user and can be abused to execute arbitrary commands on th…
|
CWE-78
OS Command
|
CVE-2018-11139
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248895
|
9.8 |
CRITICAL
Network
|
quest
|
kace_system_management_appliance
|
The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system.
|
CWE-78
OS Command
|
CVE-2018-11138
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248896
|
6.5 |
MEDIUM
Network
|
quest
|
kace_system_management_appliance
|
The 'checksum' parameter of the '/common/download_attachment.php' script in the Quest KACE System Management Appliance 8.0.318 can be abused to read arbitrary files with 'www' privileges via Director…
|
CWE-22
Path Traversal
|
CVE-2018-11137
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248897
|
9.8 |
CRITICAL
Network
|
quest
|
kace_system_management_appliance
|
The 'orgID' parameter received by the '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, a …
|
CWE-89
SQL Injection
|
CVE-2018-11136
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248898
|
8.8 |
HIGH
Network
|
quest
|
kace_system_management_appliance
|
The script '/adminui/error_details.php' in the Quest KACE System Management Appliance 8.0.318 allows authenticated users to conduct PHP object injection attacks.
|
CWE-1321
Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
|
CVE-2018-11135
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248899
|
8.8 |
HIGH
Network
|
quest
|
kace_system_management_appliance
|
In order to perform actions that requires higher privileges, the Quest KACE System Management Appliance 8.0.318 relies on a message queue managed that runs with root privileges and only allows a set …
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2018-11134
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248900
|
6.1 |
MEDIUM
Network
|
quest
|
kace_system_management_appliance
|
The 'fmt' parameter of the '/common/run_cross_report.php' script in the the Quest KACE System Management Appliance 8.0.318 is vulnerable to cross-site scripting.
|
CWE-79
Cross-site Scripting
|
CVE-2018-11133
|
2024-11-21 12:42 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
