PT-2019-10202 · Kaseya · Kaseya Vsa Rmm
Published
2019-02-05
·
Updated
2025-03-14
·
CVE-2018-20753
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions:
Kaseya VSA RMM versions prior to 9.3.0.35
Kaseya VSA RMM versions prior to 9.4.0.36
Kaseya VSA RMM versions prior to 9.5.0.5
Description:
The issue allows unprivileged remote attackers to execute PowerShell payloads on all managed devices. In January 2018, attackers actively exploited this issue in the wild.
Recommendations:
For versions prior to 9.3.0.35, update to version 9.3.0.35 or later.
For versions prior to 9.4.0.36, update to version 9.4.0.36 or later.
For versions prior to 9.5.0.5, update to version 9.5.0.5 or later.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Kaseya Vsa Rmm