Vulnerabilities > Quest > Kace Systems Management Appliance > High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-02	CVE-2022-29808	Use of Insufficiently Random Values vulnerability in Quest Kace Systems Management Appliance In Quest KACE Systems Management Appliance (SMA) through 12.0, predictable token generation occurs when appliance linking is enabled. network low complexity quest CWE-330	7.5
2019-11-06	CVE-2019-13079	SQL Injection vulnerability in Quest Kace Systems Management Appliance 9.1.317 Quest KACE Systems Management Appliance Server Center 9.1.317 is vulnerable to SQL injection. network low complexity quest CWE-89	8.8
2019-11-06	CVE-2019-13078	SQL Injection vulnerability in Quest Kace Systems Management Appliance 9.1.317 Quest KACE Systems Management Appliance Server Center 9.1.317 is vulnerable to SQL injection. network low complexity quest CWE-89	8.8
2019-11-06	CVE-2019-13076	SQL Injection vulnerability in Quest Kace Systems Management Appliance 9.1.317 Quest KACE Systems Management Appliance Server Center 9.1.317 is vulnerable to SQL injection. network low complexity quest CWE-89	8.8
2019-07-08	CVE-2019-10973	Improper Input Validation vulnerability in Quest Kace Systems Management Appliance Quest KACE, all versions prior to version 8.0.x, 8.1.x, and 9.0.x, allows unintentional access to the appliance leveraging functions of the troubleshooting tools located in the administrator user interface. network low complexity quest CWE-20	7.2

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.