Patch

• When the Management Plane Falls: CVE-2025-32975 and the Quest KACE SMA Problem March 23, 2026

  CVE-2025-32975 is a CVSS 10.0 authentication bypass in Quest KACE SMA, actively exploited since March 2026. The vulnerability matters less because of what KACE is, and more because of what it controls.