CVE-2018-20753
| CVE Published | 2019-02-05 |
|---|---|
| Related Vendor(s) | kaseya |
| Related Product(s) | virtual_system_administrator |
| Exploitation Reported (CISA KEV) | 2022-04-13 |
| CVSS 3 Base Score | 9.8 (CRITICAL) |
| CVSS 3 Attack Complexity | LOW |
| CVSS 3 Attack Vector | NETWORK |
Kaseya VSA RMM before R9.3 9.3.0.35, R9.4 before 9.4.0.36, and R9.5 before 9.5.0.5 allows unprivileged remote attackers to execute PowerShell payloads on all managed devices. In January 2018, attackers actively exploited this vulnerability in the wild.
Cyber Threat Graph Context
Explore how this CVE relates to the wider threat graph