Cody Green

**Name of the Vulnerable Software and Affected Versions** Dell KACE K2000 Systems Deployment Appliance versions 3.3.36822 and earlier **Description** The issue allows remote attackers to obtain sensitive information by reading certain files. Specifically, attackers can read the `unattend.xml` or `sysprep.inf` file, which may contain sensitive data such as passwords. **Recommendations** For Dell KACE K2000 Systems Deployment Appliance versions 3.3.36822 and earlier, consider restricting access to the peinst CIFS share as a temporary workaround until a patch is available. Additionally, limit access to sensitive files such as `unattend.xml` and `sysprep.inf` to minimize the risk of exploitation.