Quest

Quest Software, a major provider of IT management and security solutions, has a high-severity vulnerability (CVSS 8.8) that can be exploited remotely by authenticated users without user interaction, potentially compromising confidentiality, integrity, and availability of affected systems. The vulnerability requires valid credentials but no special conditions, making it a significant risk for organizations using Quest products. Security teams should monitor for patches scheduled before the January 22, 2026 deadline and review access controls for Quest applications in their environments.