CVE-2017-18362CISA KEV: Actively Exploited

Kaseya VSA SQL Injection Vulnerability

Published May 24, 2022·Updated May 24, 2022

Description

ConnectWise ManagedITSync integration for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database.

Public Exploits & PoCs1 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free