Quest response to KACE SMA Vulnerabilities: CVE-2022-29808 (4258795)

지금 지원 담당자와 채팅

반품

피드백 제출됨

이 문서로 해당 문제가 해결되었습니까?

평가 결과 선택

제목

Quest response to KACE SMA Vulnerabilities: CVE-2022-29808
설명

The Quest team has been made aware regarding vulnerabilities involving the KACE System Management Appliance product below:
CVE-2022-29808 - Incorrect Access Control

Quest takes handling of vulnerabilities seriously, and we investigate and respond to all reported potential vulnerabilities. Our vulnerability reporting and response process can be found here.
원인

CVE-2022-29808 - In Quest KACE Systems Management Appliance (SMA) through 12.0, predictable token generation occurs when appliance linking is enabled.
해결 방안

The KACE SMA vulnerability reported under CVE-2022-29808 is resolved in version 12.1.168 of the KACE Systems Management Appliance, available for download here.
If unable to upgrade to the latest version at this time, please refer to KACE SMA April 2022 Critical Security Hotfix.

피드백 제출됨

이 문서로 해당 문제가 해결되었습니까?

평가 결과 선택

권장 콘텐츠

제품:: KACE Asset Management Appliance; KACE Service Desk; KACE Systems Management Appliance; KACE as a Service

제목