Security Advisory

CVE-2021-44031

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-22 05:08:18

Last updated 2024-08-04 04:10:17

Assigner mitre

State PUBLISHED

Description

An issue was discovered in Quest KACE Desktop Authority before 11.2. /dacomponentui/profiles/profileitems/outlooksettings/Insertimage.aspx contains a vulnerability that could allow pre-authentication remote code execution. An attacker could upload a .ASP file to reside at /images/{GUID}/{filename}.

← Browse all CVEs View on cve.org ↗