Hackers are actively exploiting a critical vulnerability in Quest KACE Systems Management Appliance (SMA) to gain unauthorized access, harvest credentials, and move laterally across enterprise networks, according to new findings from security researchers. The flaw, tracked as CVE-2025-32975, affects the appliance’s Single Sign-On (SSO) authentication mechanism and allows attackers to bypass authentication entirely. This enables […] The post Hackers Exploit Quest KACE SMA Flaw to Steal Credentials appeared first on Cyber Security News.