CVE-2024-23774 PoC — Quest KACE Agent 安全漏洞

Source

https://github.com/Verrideo/CVE-2024-23774

Associated Vulnerability

Title:Quest KACE Agent 安全漏洞 (CVE-2024-23774)
Description:Quest Software Quest KACE Systems Management Appliance是美国Quest Software公司的一款IT资产管理设备。 Quest KACE Agent 12.0.38版本和13.1.23.0版本存在安全漏洞，该漏洞源于存在未加引号的搜索路径漏洞，允许本地攻击者执行他们选择的任何代码。

Readme

# CVE-2024-23774 - Unquoted Windows Service Path Vulnerability

Information will follow in due course.

File Snapshot


 [4.0K]  /data/pocs/98d526c717193d02a62f022bb989762659e2569a
└── [ 103]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!