CVE-2025-32977 in KACE SMAالمعلومات

الملخص

بحسب MITRE • 24/06/2025

Quest KACE Systems Management Appliance (SMA) 13.0.x before 13.0.385, 13.1.x before 13.1.81, 13.2.x before 13.2.183, 14.0.x before 14.0.341 (Patch 5), and 14.1.x before 14.1.101 (Patch 4) allows unauthenticated users to upload backup files to the system. While signature validation is implemented, weaknesses in the validation process can be exploited to upload malicious backup content that could compromise system integrity.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

حجز

15/04/2025

إفشاء

24/06/2025

الاعتدال

تمت الموافقة

إدخال

VDB-313735

EPSS

0.00408

KEV

لا

النشاطات

منخفض جدًا

المصادر

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!