Critical severity9.8NVD Advisory· Published Aug 7, 2017· Updated May 13, 2026
CVE-2017-12567
CVE-2017-12567
Description
SQL injection exists in Quest KACE Asset Management Appliance 6.4.120822 through 7.2, Systems Management Appliance 6.4.120822 through 7.2.101, and K1000 as a Service 7.0 through 7.2.
Affected products
18cpe:2.3:a:quest:kace_asset_management_appliance:6.4.120822:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:quest:kace_asset_management_appliance:6.4.120822:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_asset_management_appliance:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_asset_management_appliance:7.0.121306:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_asset_management_appliance:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_asset_management_appliance:7.1.149:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_asset_management_appliance:7.2:*:*:*:*:*:*:*
cpe:2.3:a:quest:kace_systems_management_appliance:6.4.120822:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:quest:kace_systems_management_appliance:6.4.120822:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_systems_management_appliance:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_systems_management_appliance:7.0.121306:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_systems_management_appliance:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_systems_management_appliance:7.1.149:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_systems_management_appliance:7.2:*:*:*:*:*:*:*
- cpe:2.3:a:quest:kace_systems_management_appliance:7.2.101:*:*:*:*:*:*:*
cpe:2.3:a:quest:k1000_as_a_service:7.0:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:quest:k1000_as_a_service:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:quest:k1000_as_a_service:7.0.121306:*:*:*:*:*:*:*
- cpe:2.3:a:quest:k1000_as_a_service:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:quest:k1000_as_a_service:7.1.149:*:*:*:*:*:*:*
- cpe:2.3:a:quest:k1000_as_a_service:7.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- support.quest.com/kace-systems-management-appliance/kb/231874nvdVendor Advisory
News mentions
0No linked articles in our index yet.