Lucene search
K

4 matches found

Krebs on Security
Krebs on Security
added 2021/07/08 3:22 p.m.158 views

Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software

Last week cybercriminals deployed ransomware to 1,500 organizations, including many that provide IT security and technical support to other companies. The attackers exploited a vulnerability in software from Kaseya, a Miami-based company whose products help system administrators manage large...

7.5CVSS8.9AI score0.85619EPSS
Exploits3
NVD
NVD
added 2015/07/20 11:59 p.m.20 views

CVE-2015-2862

Directory traversal vulnerability in Kaseya Virtual System Administrator VSA 7.x before 7.0.0.29, 8.x before 8.0.0.18, 9.0 before 9.0.0.14, and 9.1 before 9.1.0.4 allows remote authenticated users to read arbitrary files via a crafted HTTP request...

4CVSS6.1AI score0.09481EPSS
Exploits2References1
CVE
CVE
added 2015/07/20 11:0 p.m.72 views

CVE-2015-2862

CVE-2015-2862 affects Kaseya Virtual System Administrator (VSA). A directory traversal vulnerability allows remote authenticated users to read arbitrary files via a crafted HTTP request. Affected VSA versions are 7.x before 7.0.0.29, 8.x before 8.0.0.18, 9.0 before 9.0.0.14, and 9.1 before 9.1.0....

4CVSS8.6AI score0.09481EPSS
Exploits2References1Affected Software1
CERT
CERT
added 2015/07/13 12:0 a.m.51 views

Kaseya Virtual System Administrator contains multiple vulnerabilities

Overview Kaseya Virtual System Administrator VSA, versions R9 and possibly earlier, contains arbitrary file download and open redirect vulnerabilities. Description CWE-22: Improper Limitation of Pathname to a Restricted Directory 'Path Traversal' - CVE-2015-2862Kaseya VSA is an IT management...

4.3CVSS9.3AI score0.10317EPSS
Exploits2References3
Rows per page
Query Builder