The ConnectWise ManagedITSync integration for Kaseya VSA (through 2017) has unauthenticated remote command vulnerability, enabling full access to VSA database and ransomware execution on managed endpoints
Reporter | Title | Published | Views | Family All 7 |
---|---|---|---|---|
![]() | ConnectWise ManagedITSync SQL Injection (CVE-2017-18362) | 7 Jun 202200:00 | – | checkpoint_advisories |
![]() | Kaseya VSA SQL Injection Vulnerability | 24 May 202200:00 | – | cisa_kev |
![]() | Sql injection | 5 Feb 201906:29 | – | prion |
![]() | CVE-2017-18362 | 5 Feb 201905:00 | – | vulnrichment |
![]() | CVE-2017-18362 | 5 Feb 201906:29 | – | nvd |
![]() | CVE-2017-18362 | 5 Feb 201905:00 | – | cvelist |
![]() | CVE-2017-18362 | 5 Feb 201906:29 | – | cve |
Source | Link |
---|---|
cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
archive | www.archive.today/rdkeQ |
github | www.github.com/kbni/owlky |
webcache | www.webcache.googleusercontent.com/search |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo