A critical vulnerability in Quest KACE systems, tracked as CVE-2025-32975, has been identified and may be under active exploitation targeting the education sector. Quest KACE is a systems management platform commonly used by organizations for endpoint management and IT asset tracking.
Security researchers have flagged the vulnerability as critical, though specific CVSS scoring details were not immediately available. The potential for active exploitation against educational institutions raises immediate concerns about the scope and impact of the security flaw.