Quest KACE Systems Management Appliance is a technology platform tracked across 2 threat clusters and 2 intelligence report mentions on ThreatCluster. First observed March 23, 2026; most recent activity May 14, 2026.
Active exploitation of a critical vulnerability (CVE-2025-32975) in the Quest KACE Systems Management Appliance (SMA) is occurring, with attackers targeting unpatched instances to bypass authentication and gain…
The CVE-2025-32975 vulnerability in Quest KACE SMA, an endpoint management platform, has been exploited after remaining unpatched for 10 months. This severe authentication bypass flaw, with a CVSS score of 10.0, allows…