Philippe Caturegli

**Name of the Vulnerable Software and Affected Versions** Open Web Analytics versions prior to 1.8.1 **Description** Open Web Analytics (OWA) before version 1.8.1 is susceptible to SQL injection. **Recommendations** Update to version 1.8.1 or later.

**Name of the Vulnerable Software and Affected Versions** Quest KACE Systems Management Appliance (SMA) versions 13.0.x prior to 13.0.385 Quest KACE Systems Management Appliance (SMA) versions 13.1.x prior to 13.1.81 Quest KACE Systems Management Appliance (SMA) versions 13.2.x prior to 13.2.183 Quest KACE Systems Management Appliance (SMA) versions 14.0.x prior to 14.0.341 (Patch 5) Quest KACE Systems Management Appliance (SMA) versions 14.1.x prior to 14.1.101 (Patch 4) **Description** An authentication bypass issue exists in the SSO authentication handling mechanism, allowing remote attackers to impersonate legitimate users without valid credentials, which can lead to complete administrative takeover. Other identified flaws include errors in cryptographic signature verification that allow the upload of backup files and a lack of authentication for a critical function that can cause a denial of service. Real-world exploitation has been observed, with threat actors targeting internet-exposed appliances to execute remote commands via `KPluginRunProcess` and deliver Base64-encoded payloads using curl. One significant incident involved a managed service provider (MSP) where the compromise exposed over 60 downstream organizations across government, healthcare, and education sectors. It is estimated that over 12,000 instances remain internet-facing and unpatched. **Recommendations** Update versions 13.0.x to 13.0.385 or later. Update versions 13.1.x to 13.1.81 or later. Update versions 13.2.x to 13.2.183 or later. Update versions 14.0.x to 14.0.341 (Patch 5) or later. Update versions 14.1.x to 14.1.101 (Patch 4) or later. Remove the appliance from the public internet by using a firewall, VPN, or air-gapping the system.

Name of the Vulnerable Software and Affected Versions: Quest KACE Systems Management Appliance (SMA) versions 13.0.x through 13.0.384 Quest KACE Systems Management Appliance (SMA) versions 13.1.x through 13.1.80 Quest KACE Systems Management Appliance (SMA) versions 13.2.x through 13.2.182 Quest KACE Systems Management Appliance (SMA) versions 14.0.x through 14.0.340 (Patch 4) Quest KACE Systems Management Appliance (SMA) versions 14.1.x through 14.1.100 (Patch 3) Description: The issue is related to a logic flaw in the two-factor authentication implementation of the Quest KACE Systems Management Appliance (SMA), allowing authenticated users to bypass TOTP-based 2FA requirements. This flaw exists in the 2FA validation process and can be exploited to gain elevated access. Recommendations: For versions 13.0.x through 13.0.384, update to version 13.0.385 or later. For versions 13.1.x through 13.1.80, update to version 13.1.81 or later. For versions 13.2.x through 13.2.182, update to version 13.2.183 or later. For versions 14.0.x through 14.0.340 (Patch 4), update to version 14.0.341 (Patch 5) or later. For versions 14.1.x through 14.1.100 (Patch 3), update to version 14.1.101 (Patch 4) or later.

Name of the Vulnerable Software and Affected Versions: Quest KACE Systems Management Appliance (SMA) versions 13.0.x through 13.0.384 Quest KACE Systems Management Appliance (SMA) versions 13.1.x through 13.1.80 Quest KACE Systems Management Appliance (SMA) versions 13.2.x through 13.2.182 Quest KACE Systems Management Appliance (SMA) versions 14.0.x through 14.0.340 (before Patch 5) Quest KACE Systems Management Appliance (SMA) versions 14.1.x through 14.1.100 (before Patch 4) Description: The issue allows unauthenticated users to upload backup files to the system. Although signature validation is implemented, weaknesses in the validation process can be exploited to upload malicious backup content, potentially compromising system integrity. Recommendations: For versions 13.0.x through 13.0.384, update to version 13.0.385 or later. For versions 13.1.x through 13.1.80, update to version 13.1.81 or later. For versions 13.2.x through 13.2.182, update to version 13.2.183 or later. For versions 14.0.x through 14.0.340, apply Patch 5 or later. For versions 14.1.x through 14.1.100, apply Patch 4 or later.

Name of the Vulnerable Software and Affected Versions: Quest KACE Systems Management Appliance (SMA) versions 13.0.x through 13.0.384 Quest KACE Systems Management Appliance (SMA) versions 13.1.x through 13.1.80 Quest KACE Systems Management Appliance (SMA) versions 13.2.x through 13.2.182 Quest KACE Systems Management Appliance (SMA) versions 14.0.x through 14.0.340 (before Patch 5) Quest KACE Systems Management Appliance (SMA) versions 14.1.x through 14.1.100 (before Patch 4) Description: The issue allows unauthenticated users to replace system licenses through a web interface intended for license renewal. Attackers can exploit this to replace valid licenses with expired or trial licenses, causing denial of service. Recommendations: For versions 13.0.x through 13.0.384, update to version 13.0.385 or later. For versions 13.1.x through 13.1.80, update to version 13.1.81 or later. For versions 13.2.x through 13.2.182, update to version 13.2.183 or later. For versions 14.0.x through 14.0.340, apply Patch 5 or later. For versions 14.1.x through 14.1.100, apply Patch 4 or later.