• 成为门户专家
• 打印
• 我的下载 ()

• 支持
• Knowledge Base
• KACE as a Service

Quest response to KACE SMA Agent Vulnerabilities: CVE-2024-23772, CVE-2024-23773, CVE-2024-23774 (4375402)

×

返回

反馈已提交

本文是否解决了您的问题？

  选择评级

• 标题

  Quest response to KACE SMA Agent Vulnerabilities: CVE-2024-23772, CVE-2024-23773, CVE-2024-23774

• 说明

  The Quest team has been made aware of vulnerabilities involving the KACE System Management Agent product:

  • CVE-2024-23772
  • CVE-2024-23773
  • CVE-2024-23774

   

  Vulnerabilities found and reported by Tom Norfolk (AJ Bell).

  
  Quest takes handling of vulnerabilities seriously, and we investigate and respond to all reported potential vulnerabilities. Our vulnerability reporting and response process can be found here .

• 原因

  CVE-2024-23772, CVE-2024-23773, CVE-2024-23774 vulnerabilities exist within Quest KACE Systems Management Appliance (SMA) agent through 13.2 which could allow file manipulation and/or incorrect process launching under specific conditions.

   

• 解决办法

  The KACE SMA vulnerabilities reported under CVE-2024-23772, CVE-2024-23773, CVE-2024-23774 are resolved in the KACE SMA Agent since version 13.1.25 and 13.2.24.
  
  Please get the latest agent version available for download at the support portal or using the automatic update through your KACE SMA adminui Settings | Provisioning | Update Agents.

反馈已提交

本文是否解决了您的问题？

  选择评级

Request a KB Article

×

请求未来知识库文章主题

请求未来知识库文章主题

Products

------ 请选择 ------ Active Administrator Active Roles Active Roles Sync Service ApexSQL Analyze ApexSQL Audit ApexSQL Backup ApexSQL BI Monitor ApexSQL Build ApexSQL Compare ApexSQL Compare and Sync Toolkit Bundle ApexSQL Compare and Sync Toolkit Subscription ApexSQL Complete ApexSQL Data Diff ApexSQL Data Diff for MySQL ApexSQL Database Power Tools for VS Code ApexSQL Decrypt ApexSQL Defrag ApexSQL Developer Bundle ApexSQL Devops Plus Toolkit Bundle ApexSQL DevOps Plus Toolkit Subscription ApexSQL DevOps Toolkit ApexSQL Devops Toolkit Bundle ApexSQL DevOps Toolkit Subscription ApexSQL Diff ApexSQL Diff for MySQL ApexSQL Discover ApexSQL Doc ApexSQL Doc for MySQL ApexSQL Doc Subscription ApexSQL Enforce ApexSQL Fundamentals Toolkit Bundle ApexSQL Fundamentals Toolkit for MySQL ApexSQL Fundamentals Toolkit Subscription ApexSQL Generate ApexSQL Job ApexSQL Log ApexSQL Manage ApexSQL Mask ApexSQL Model ApexSQL Monitor ApexSQL Operations Plus Toolkit Bundle ApexSQL Operations Toolkit Bundle ApexSQL Plan ApexSQL Propagate ApexSQL Pump ApexSQL Recover ApexSQL Refactor ApexSQL Script ApexSQL Search ApexSQL Source Control ApexSQL Source Control Subscription ApexSQL Trigger ApexSQL Unit Test ApexSQL VM Monitor Archive Manager Archive Manager for Exchange Archive Manager for Files Archive Shuttle Benchmark Factory for Database Change Auditor Code Tester for Oracle Coexistence Manager for Notes Collaboration Services Content Matrix ControlPoint Defender Directory Sync Pro for Active Directory DL Series Backup and Recovery Appliances Enterprise Reporter erwin Data Intelligence Cloud erwin Data Intelligence Suite erwin Data Modeler erwin Data Transformation erwin Enterprise Architect Agile erwin ER360 On Cloud erwin Evolve erwin Mart On Cloud erwin Sequence Essentials for Office 365 Foglight Foglight Cloud Foglight Evolve Foglight for Databases GoPlex NC-Access GPOADmin Identity Manager Identity Manager Data Governance Edition Identity Manager On Demand Identity Manager On Demand - Starling Edition InTrust IT Security Search KACE as a Service KACE Asset Management Appliance KACE Cloud KACE Desktop Authority KACE Service Desk KACE Systems Deployment Appliance KACE Systems Management Appliance KACE Unified Endpoint Manager LiteSpeed for SQL Server Live-Reorg MessageStats Migration Manager for AD Migration Manager for Exchange Migrator for Notes to Exchange Migrator for Notes to SharePoint Migrator Pro for Active Directory Migrator Pro for Exchange Multsess NC-Access NC-NIM NC-Pass NC-Pass Radius NC-Syncom Command NC-Syncom Password NCI NetVault NetVault Plus NetVault SmartDisk Nova On Demand Audit On Demand License Management On Demand Migration On Demand Recovery One Identity Safeguard for Privileged Passwords One Identity Safeguard for Privileged Sessions PAM Essentials Password Manager Privilege Manager for Unix Privileged Access Suite for Unix PST Flight Deck QoreStor Quick Connect for Active Directory Quick Connect for AS400 Quick Connect for Base Systems Quick Connect for Cloud Services Quick Connect for RACF Quick Connect Management Shell Quick Connect Sync Engine Rapid Recovery Recovery Manager for AD Recovery Manager for AD Disaster Recovery Edition Recovery Manager for AD Forest Edition Recovery Manager for Exchange Recovery Manager for Exchange - Data Protection Edition RemoteScan CheckCapture RemoteScan Enterprise RemoteScan Enterprise User Edition RemoteScan for LAN RemoteScan Terminal Services-Citrix RemoteScan Universal RemoteScan Universal User Edition Safeguard Authentication Services Safeguard for Privileged Passwords On Demand Safeguard for Privileged Sessions On Demand Safeguard for Sudo Safeguard On Demand Safeguard Privilege Manager for Windows Safeguard Remote Access Secure Copy Security Explorer Security Guardian Sensitive Content Manager SharePlex SharePlex Manager Space Manager with LiveReorg Spotlight Cloud Spotlight on DB2 Spotlight on Oracle Spotlight on RAC Spotlight on SAP ASE Spotlight on SQL Server Enterprise Spotlight on Unix SQL Navigator for Oracle SQL Optimizer for DB2 LUW SQL Optimizer for DB2 ZOS SQL Optimizer for Oracle SQL Optimizer for SAP ASE SQL Optimizer for SQL Server Starling Cloud Assistant Starling Connect Stat StoragePoint syslog-ng Premium Edition syslog-ng Store Box Toad Data Modeler Toad Data Point Toad Data Point Subscription Toad Data Studio Toad Data Studio Subscription Toad DevOps Toolkit Toad Edge Toad for DB2 Toad for Oracle Toad for Oracle on Mac Toad for Oracle on Mac Subscription Toad for Oracle Subscription Toad for SAP Solutions Toad for SQL Server Toad for SQL Server Subscription Toad Intelligence Central TPAM Unified Communications Analytics Unified Communications Diagnostics vRanger

Topic

------ 请选择 ------ Best Practices Policy and Procedures Configuration How To Installation Licensing Troubleshooting

Title

Description

Email Address

提交

Leave a Comment

Send Comment必须在上方选择1至5颗星进行评级，才能发送评论

Thank you for your feedback for Topic Request

Your Request will be reviewed by our technical reviewer team and, if approved, will be added as a Topic in our Knowledgebase.

确定

×

建议的内容

产品：

KACE Systems Management Appliance
13.2

KACE as a Service
13.2

主题：

Configuration

文章历史记录：

创建时间： 4/16/2024
上次更新时间： 6/28/2024

Thank you for your feedback for Topic Request

Your Request will be reviewed by our technical reviewer team and, if approved, will be added as a Topic in our Knowledgebase.

确定

×

 欢迎访问支持

您可以在附属支持站点上查找适用于戴尔*产品*的在线支持帮助。单击“继续”，转至适用于*产品*的正确支持内容和帮助。

搜索所有文章

© 2024 Quest Software Inc. ALL RIGHTS RESERVED. 使用条款 隐私 Cookie Preference Center