Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
There is an LDAP bind credentials exposure on KACE Systems Deployment and Remote Site appliances 9.0.146. The captured credentials may provide a higher privilege level on the Active Directory domain. To exploit this, an authenticated attacker edits the user-authentication settings to specify an attacker-controlled LDAP server, clicks the Test Settings button, and captures the cleartext credentials.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Quest Software KACE Systems Deployment Appliance 安全漏洞
Vulnerability Description
Quest Software KACE Systems Deployment Appliance是Quest Software公司的快速、自动化的系统和磁盘映像软件。 Quest Software KACE Systems Deployment Appliance 9.0.146版本存在安全漏洞,该漏洞源于存在LDAP绑定凭据公开,经过身份验证的攻击者可以获取明文凭据。
CVSS Information
N/A
Vulnerability Type
N/A