CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-11133

The 'fmt' parameter of the '/common/run_cross_report.php' script in the the Quest KACE System Management Appliance 8.0.318 is vulnerable to cross-site scripting.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.2%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities
https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities

Products affected by CVE-2018-11133

Quest » Kace System Management Appliance » Version: 8.0.318

cpe:2.3:a:quest:kace_system_management_appliance:8.0.318

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-11133

Products

Pricing

Contact Us