Vulnerabilities > Quest > Privilege Manager > 6.0.0.50

DATE CVE VULNERABILITY TITLE RISK
2017-04-14 CVE-2017-6554 Improper Input Validation vulnerability in Quest Privilege Manager 6.0.027/6.0.050
pmmasterd in Quest Privilege Manager before 6.0.0.061, when configured as a policy server, allows remote attackers to write to arbitrary files and consequently execute arbitrary code with root privileges via an ACT_NEWFILESENT action.
network
low complexity
quest CWE-20
critical
 9.0
9.0