Known exploited
Quest
CVE published 2026-04-20
CVE-2025-32975
CVE-2025-32975 is an improper authentication vulnerability in Quest KACE Systems Management Appliance (SMA) that CISA added to the Known Exploited Vulnerabilities catalog on 2026-04-20. The KEV listing means defenders should treat it as an urgent remediation item, even though the supplied public corpus does not include affected versions, impact depth, or exploit mechanics. CISA’s guidance is to apply vend [truncated]