Headline
CVE-2022-29807: Quest response to KACE SMA vulnerabilities: CVE-2022-29807 (338162)
A SQL injection vulnerability exists within Quest KACE Systems Management Appliance (SMA) through 12.0 that can allow for remote code execution via download_agent_installer.php.
Zurück
Feedback übermittelt
Konnten Sie mithilfe dieses Artikels ein Problem lösen?
Bewertung auswählen
Titel
Quest response to KACE SMA vulnerabilities: CVE-2022-29807
Beschreibung
The Quest team has been made aware regarding a vulnerability involving the KACE System Management Appliance product below:
CVE-2022-29807 - SQL Injection
Quest takes handling of vulnerabilities seriously, and we investigate and respond to all reported potential vulnerabilities. Our vulnerability reporting and response process can be found here.
Ursache
CVE-2022-29807: A SQL injection vulnerability exists within Quest KACE Systems Management Appliance (SMA) through 12.0 that can allow for remote code execution.
Lösung
The KACE SMA vulnerability reported under CVE-2022-29807 is resolved in version 12.1.168 of the KACE Systems Management Appliance, available for download here.
Feedback übermittelt
Konnten Sie mithilfe dieses Artikels ein Problem lösen?
Bewertung auswählen
Request a KB Article
Leave a Comment
Um Kommentare absenden zu können, müssen Sie oben eine Bewertung von 1 bis 5 Sternen auswählen
Produkt(e):
KACE Asset Management Appliance
12.1, 12.0, 11.1, 11.0
KACE Service Desk
12.1, 12.0, 11.1, 11.0
KACE Systems Management Appliance
12.1, 12.0, 11.1, 11.0
KACE as a Service
12.1, 12.0, 11.1, 11.0
Thema/Themen:
Configuration
Artikelhistorie:
Erstellt am: 4/25/2022
Letzte Aktualisierung am: 8/1/2022
Author:
Laura Carcamo