{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-21T07:36:57.527","vulnerabilities":[{"cve":{"id":"CVE-2025-26850","sourceIdentifier":"cve@mitre.org","published":"2025-07-05T00:15:22.670","lastModified":"2026-06-17T09:02:29.067","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The agent in Quest KACE Systems Management Appliance (SMA) before 14.0.97 and 14.1.x before 14.1.19 potentially allows privilege escalation on managed systems."},{"lang":"es","value":"El agente en Quest KACE Systems Management Appliance (SMA) anterior a 14.0.97 y 14.1.x anterior a 14.1.19 potencialmente permite la escalada de privilegios en sistemas administrados."}],"affected":[{"source":"cve@mitre.org","affectedData":[{"vendor":"Quest","product":"KACE Systems Management Appliance","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"14.0.97","versionType":"custom","status":"affected"},{"version":"14.1.0","lessThan":"14.1.19","versionType":"custom","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"cve@mitre.org","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":9.3,"baseSeverity":"CRITICAL","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.5,"impactScore":6.0}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-07-08T13:16:37.291128Z","id":"CVE-2025-26850","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"cve@mitre.org","type":"Secondary","description":[{"lang":"en","value":"CWE-863"}]}],"references":[{"url":"https://support.quest.com/kb/4378559/quest-response-to-kace-sma-agent-vulnerability-cve-2025-26850","source":"cve@mitre.org"}]}}]}