CVE-2018-11138

CVE Database · CVE-2018-11138

CVE-2018-11138

· CRITICALAnalyzed

CVSS v3.1

9.8

EPSS

91.93%

Published

May 31, 2018

Modified

Nov 5, 2025

CISA Known Exploited Vulnerability

Added: 2022-03-25 · Due: 2022-04-15

Apply updates per vendor instructions.

Public PoC / Exploit (3)

All weaponized →

Exploit-DBQuest KACE Systems Management - Command Injection (Metasploit)NucleiNuclei detection template TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-78CWE-78

Affected Products (1)

quest · kace_system_management_appliancevulnerable

References (5)

https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities

ExploitTechnical DescriptionThird Party Advisory

https://www.exploit-db.com/exploits/44950/

ExploitThird Party AdvisoryVDB Entry

https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities

ExploitTechnical DescriptionThird Party Advisory

https://www.exploit-db.com/exploits/44950/

ExploitThird Party AdvisoryVDB Entry

KEV Catalog EPSS Scores Vendors All CVEs