claytonvantol.us
SESSION: secure TLS: 1.3 PID: 1337

clayton@site:~/news$ cat cve-2025-32975-quest-kace-systems-management-appliance-sma.log

CVE-2025-32975 — Quest KACE Systems Management Appliance (SMA) Improper Authentication Vulnerability

2026-04-20 • CISA Known Exploited Vulnerability

[event] Quest KACE Systems Management Appliance (SMA) contains an improper authentication vulnerability that could allow attackers to impersonate legitimate users without valid credentials.

> AFFECTED SOFTWARE

Field Value
Vendor Quest
Product KACE Systems Management Appliance (SMA)
CWE CWE-287
CVE ID CVE-2025-32975
Date Added 2026-04-20
Due Date 2026-05-04
Ransomware Campaign Unknown

> MITIGATION

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Due Date: 2026-05-04

> REFERENCES

← back to terminal

UPTIME: 1337d v2.0.1 privacy LAST LOGIN: 2026-05-30 20:36:07 UTC