Описание
In Quest KACE Systems Management Appliance (SMA) through 12.0, a hash collision is possible during authentication. This may allow authentication with invalid credentials.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 12.1.168 (исключая)
cpe:2.3:a:quest:kace_systems_management_appliance:*:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00267
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-326
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
In Quest KACE Systems Management Appliance (SMA) through 12.0, a hash collision is possible during authentication. This may allow authentication with invalid credentials.
EPSS
Процентиль: 50%
0.00267
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-326