Exposures › CVE-2021-30116

CVE-2021-30116

Severity
critical · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-11-03
Reference
◐ zero-day ⌖ exploited in the wild shame 80/100 ransomwareexploited-in-wildzero-day

Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system.

Players implicated

Description

Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.