An issue was discovered in Quest KACE Agent for Windows 12.0.38 and 13.1.23.0. An unquoted Windows search path vulnerability exists in the KSchedulerSvc.exe and AMPTools.exe components. This allows local attackers to execute code of their choice with NT Authority\SYSTEM privileges.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-04-30T00:00:00
Updated: 2024-08-01T23:13:07.423Z
Reserved: 2024-01-22T00:00:00
Link: CVE-2024-23774
Vulnrichment
Updated: 2024-08-01T23:13:07.423Z
NVD
Status : Awaiting Analysis
Published: 2024-04-30T14:15:15.103
Modified: 2024-07-03T01:48:07.913
Link: CVE-2024-23774
Redhat
No data.