CNNVD-202506-3091 Information
CNNVD ID
CNNVD-202506-3091
Related CVE
- CNNVD Published: 2025-06-24
Description (Chinese)
Quest Software Quest KACE Systems Management Appliance是美国Quest Software公司的一款IT资产管理设备。 Quest KACE Systems Management Appliance存在访问控制错误漏洞,该漏洞源于许可证替换功能存在缺陷,可能导致拒绝服务攻击。以下版本受到影响:13.0.385之前版本、13.1.81之前版本、13.2.183之前版本、14.0.341之前版本和14.1.101之前版本。
Description (English)
Quest Software Quest KACE Systems Management Application is an IT asset management facility of the United States company Quest Software. There is an access control error in Quest KACE Systems Management Application, which stems from deficiencies in the licence replacement function that may lead to a denial of service attack. The following versions were affected: pre-13.0.385, pre-1.3.81, pre-13.2.183, pre-14.0341 and pre-14.1.101.
Hazard Level
Medium
Vulnerability Type
访问控制错误
Affected Vendor
Quest Software
Published
2025-06-24
Last Modified
2026-02-24
References
https://nvd.nist.gov/vuln/detail/CVE-2025-32978 https://access.redhat.com/security/cve/cve-2025-32978
Patch
https://support.quest.com/kace-systems-management-appliance/14.1/download-new-releases
Share on: