Cross-Site Scripting Vulnerability in Quest KACE Desktop Authority
CVE-2021-44030
6.1MEDIUM
What is CVE-2021-44030?
The vulnerability in Quest KACE Desktop Authority allows for cross-site scripting (XSS) attacks due to insufficient filtering of untrusted HTML content before it reaches the jQuery.htmlPrefilter method. This could potentially enable attackers to inject malicious scripts, compromising the security of the affected systems. Users are encouraged to upgrade to version 11.2 or later to mitigate this issue effectively.