Privilege Escalation Vulnerability in Quest KACE Systems Management Appliance
CVE-2025-26850

Currently unrated

Key Information:

Vendor: Quest
Status: KACE Systems Management Appliance
Vendor: CVE Published:; 5 July 2025

What is CVE-2025-26850?

The agent in Quest KACE Systems Management Appliance is susceptible to a privilege escalation vulnerability that could be exploited on managed systems. This issue affects versions prior to 14.0.97 and 14.1.x prior to 14.1.19, allowing unauthorized escalation of privileges. Users are advised to update their systems to mitigate potential risks associated with this vulnerability.

References

https://support.quest.com/kb/4378559/quest-response-to-ka...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 5, 2025