CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-44030

Quest KACE Desktop Authority before 11.2 allows XSS because it does not prevent untrusted HTML from reaching the jQuery.htmlPrefilter method of jQuery.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.1%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://support.quest.com/kace-desktop-authority/kb/336098/quest-response-to-desktop-authority-vulnerabilities-prior-to-11-2
https://support.quest.com/kace-desktop-authority/kb/336098/quest-response-to-desktop-authority-vulnerabilities-prior-to-11-2

Products affected by CVE-2021-44030

Quest » Kace Desktop Authority » Version: 10.0

cpe:2.3:a:quest:kace_desktop_authority:10.0
Quest » Kace Desktop Authority » Version: 10.1

cpe:2.3:a:quest:kace_desktop_authority:10.1
Quest » Kace Desktop Authority » Version: 10.2

cpe:2.3:a:quest:kace_desktop_authority:10.2
Quest » Kace Desktop Authority » Version: 11.0

cpe:2.3:a:quest:kace_desktop_authority:11.0
Quest » Kace Desktop Authority » Version: 11.1

cpe:2.3:a:quest:kace_desktop_authority:11.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-44030

Products

Pricing

Contact Us