Back to KEVs

CVE-2018-11138

The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be...

Basic Information

CVE State
PUBLISHED
Reserved Date
May 15, 2018
Published Date
May 31, 2018
Last Updated
February 07, 2025
Vendor
Quest
Product
KACE System Management Appliance
Description
The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system.
Tags
php cisa malware ransomware metasploit_scanner

CVSS Scores

CVSS v3.1

9.8 - CRITICAL

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0

10.0

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

SSVC Information

Exploitation
active
Automatable
Yes
Technical Impact
total

Exploit Status

Exploited in the Wild
Yes (2022-03-25 00:00:00 UTC) Source
Used in Malware
Yes (added 2022-03-25 00:00:00 UTC) Source

References

https://www.exploit-db.com/exploits/44950/ https://www.coresecurity.com/advisories/quest-kace-system-management-appliance-multiple-vulnerabilities

Known Exploited Vulnerability Information

Source Added Date
CISA 2022-03-25 00:00:00 UTC

Scanner Integrations

Scanner URL Date Detected
Metasploit https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/http/quest_kace_systems_management_rce.rb 2025-04-29 11:01:27 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

quest_kace_systems_management_rce

Type: metasploit • Created: Unknown

Metasploit module for CVE-2018-11138

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Exploit Used in Malware

  • Added to KEVIntel

  • Detected by Metasploit