THREAT OPS › CVEs › CVE-2017-18362
CVE-2017-18362 — Kaseya VSA SQL Injection Vulnerability
ConnectWise ManagedITSync integration for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database.
Vulnerability details
- Affected productsVirtual System/Server Administrator (VSA)
- KEV remediation due2022-06-14