CVE-2015-2862
published 2015-07-20CVE-2015-2862: Directory traversal vulnerability in Kaseya Virtual System Administrator (VSA) 7.x before 7.0.0.29, 8.x before 8.0.0.18, 9.0 before 9.0.0.14, and 9.1 before…
PriorityP335medium4CVSS 2.0
AVNACLAuSCPINAN
EXPLOIT
EPSS
9.48%
94.8th percentile
Directory traversal vulnerability in Kaseya Virtual System Administrator (VSA) 7.x before 7.0.0.29, 8.x before 8.0.0.18, 9.0 before 9.0.0.14, and 9.1 before 9.1.0.4 allows remote authenticated users to read arbitrary files via a crafted HTTP request.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kaseya | virtual_system_administrator | >= 7.0 < 7.0.0.29 | 7.0.0.29 |
| kaseya | virtual_system_administrator | >= 8.0 < 8.0.0.18 | 8.0.0.18 |
| kaseya | virtual_system_administrator | >= 9.0 < 9.0.0.14 | 9.0.0.14 |
| kaseya | virtual_system_administrator | >= 9.1 < 9.1.0.4 | 9.1.0.4 |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Krebs
Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software
blogs_krebs·2021-07-08·CVSS 4.0
[MEDIUM] Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software
Last week cybercriminals deployed ransomware to 1,500 organizations, including many that provide IT security and technical support to other companies. The attackers exploited a vulnerability in software from Kaseya , a Miami-based company whose products help system administrators manage large networks remotely. Now it appears Kaseya’s customer service portal was left vulnerable until last week to a data-leaking security flaw that was first identified in the same software six years ago.
On July 3, the REvil ransomware affiliate program began using a zero-day security hole ( CVE-2021-30116 ) to deploy ransomware to hundreds of IT management companies running Kaseya’s remote management software — known as the Kaseya Virtual System Administrator (VSA).
According to this entry for CVE-2021-30
Krebs
Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software
blogs_krebs·2021-07-08·CVSS 4.0
[MEDIUM] Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software
Last week cybercriminals deployed ransomware to 1,500 organizations, including many that provide IT security and technical support to other companies. The attackers exploited a vulnerability in software from Kaseya, a Miami-based company whose products help system administrators manage large networks remotely. Now it appears Kaseya’s customer service portal was left vulnerable until last week to a data-leaking security flaw that was first identified in the same software six years ago.
On July 3, the REvil ransomware affiliate program began using a zero-day security hole (CVE-2021-30116) to deploy ransomware to hundreds of IT management companies running Kaseya’s remote management software — known as the Kaseya Virtual System Administrator (VSA).
According to this entry for CVE-2021-30116
2015-07-20
Published