Quest KACE SMA SQLi RCE in download_agent_installer.php (12.0)
CVE-2022-29807 Published on August 2, 2022

A SQL injection vulnerability exists within Quest KACE Systems Management Appliance (SMA) through 12.0 that can allow for remote code execution via download_agent_installer.php.

NVD

Products Associated with CVE-2022-29807

Want to know whenever a new CVE is published for Quest Software Kace Systems Management Appliance? stack.watch will email you.

Quest Software Kace Systems Management Appliance

Exploit Probability

EPSS

2.02%

Percentile

83.50%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Quest KACE SMA SQLi RCE in download_agent_installer.php (12.0)CVE-2022-29807 Published on August 2, 2022

Products Associated with CVE-2022-29807

Exploit Probability

Quest KACE SMA SQLi RCE in download_agent_installer.php (12.0)
CVE-2022-29807 Published on August 2, 2022