Dell » Kace K2000 Systems Deployment Appliance : Security Vulnerabilities, CVEs, CVSS score >= 5
The Dell KACE K2000 System Deployment Appliance allows remote attackers to execute arbitrary commands by leveraging database write access.
Max CVSS
9.3
EPSS Score
0.43%
Published
2011-11-12
Updated
2011-11-14
The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent attackers to obtain sensitive information by examining script source code.
Max CVSS
5.0
EPSS Score
0.16%
Published
2011-11-12
Updated
2011-11-15
The Dell KACE K2000 Systems Deployment Appliance 3.3.36822 and earlier contains a peinst CIFS share, which allows remote attackers to obtain sensitive information by reading the (1) unattend.xml or (2) sysprep.inf file, as demonstrated by reading a password.
Max CVSS
5.0
EPSS Score
0.52%
Published
2011-04-10
Updated
2017-08-17
3 vulnerabilities found