CVE-2015-2862

Name of the Vulnerable Software and Affected Versions Kaseya Virtual System Administrator (VSA) versions 7.x before 7.0.0.29 Kaseya Virtual System Administrator (VSA) versions 8.x before 8.0.0.18 Kaseya Virtual System Administrator (VSA) versions 9.0 before 9.0.0.14 Kaseya Virtual System Administrator (VSA) versions 9.1 before 9.1.0.4

Description A directory traversal issue allows remote authenticated users to read arbitrary files via a crafted HTTP request.

Recommendations For Kaseya Virtual System Administrator (VSA) versions 7.x before 7.0.0.29, update to version 7.0.0.29 or later. For Kaseya Virtual System Administrator (VSA) versions 8.x before 8.0.0.18, update to version 8.0.0.18 or later. For Kaseya Virtual System Administrator (VSA) versions 9.0 before 9.0.0.14, update to version 9.0.0.14 or later. For Kaseya Virtual System Administrator (VSA) versions 9.1 before 9.1.0.4, update to version 9.1.0.4 or later.