The Quest team received a report from CERT Coordination Center regarding vulnerabilities involving the KACE System Management Appliance(SMA) below:
CVE-2018-5404 Blind SQL Injection Vulnerability
CVE-2018-5405 Stored XSS Vulnerability
CVE-2018-5406 Misconfigured CORS Vulnerability
Quest takes the handling of vulnerabilities seriously, and we investigate and respond to all reported potential vulnerabilities. Our vulnerability reporting and response process can be found here.
You need to be signed in and under a current maintenance contract to view premium knowledge articles.