XXE can occur in Quest KACE Desktop Authority prior to 11.2 because the log4net configuration file might be controlled by an attacker, a related issue to CVE-2018-1285.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
quest kace desktop authority |