Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dell kace k2000 systems deployment appliance vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-1672
The Dell KACE K2000 Systems Deployment Appliance 3.3.36822 and previous versions contains a peinst CIFS share, which allows remote malicious users to obtain sensitive information by reading the (1) unattend.xml or (2) sysprep.inf file, as demonstrated by reading a password.
Dell Kace K2000 Systems Deployment Appliance
NA
CVE-2011-4046
The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent malicious users to obtain sensitive information by examining script source code.
Dell Kace K2000 Systems Deployment Appliance
NA
CVE-2011-4047
The Dell KACE K2000 System Deployment Appliance allows remote malicious users to execute arbitrary commands by leveraging database write access.
Dell Kace K2000 Systems Deployment Appliance
NA
CVE-2011-4048
The Dell KACE K2000 System Deployment Appliance has a default username and password for the read-only reporting account, which makes it easier for remote malicious users to obtain sensitive information from the database by leveraging the default credentials.
Dell Kace K2000 Systems Deployment Appliance
NA
CVE-2011-4436
Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface on the Dell KACE K2000 System Deployment Appliance allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Dell Kace K2000 Systems Deployment Appliance
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started