CVE-2025-32975CRITICAL · 10.0TrackedCISA KEV

Quest · KACE Systems Management Appliance (SMA)

Quest KACE Systems Management Appliance (SMA) contains an improper authentication vulnerability that could allow attackers to impersonate legitimate users without valid credentials.

Disclosed

2025-06-24

350 days ago

Status

no honeypot capture yet

on CISA KEV — watching

7-day events

across 0 distinct IPs

7-day spread

0 ASN · 0 cty

0 active days

Top ASNs

No events captured yet.

Top countries

No events captured yet.

References

https://support.quest.com/kb/4379499/quest-response-to-kace-sma-vulnerabilities-cve-2025-32975-cve-2025-32976-cve-2025-32977-cve-2025-32978
https://nvd.nist.gov/vuln/detail/CVE-2025-32975

↗ NVD ↗ CISA KEV ↗ Search analyses