![]() CVE-2021-30119 - A Cross Site Scripting vulnerability, to be included in 9.5.7.CVE-2021-30118 - A Remote Code Execution vulnerability, resolved in April 10th patch.CVE-2021-30117 - An SQL injection vulnerability, resolved in May 8th patch.CVE-2021-30116 - A credentials leak and business logic flaw, to be included in 9.5.7.In April, the Dutch Institute for Vulnerability Disclosure (DIVD) disclosed seven vulnerabilities to Kaseya: MSPs can deploy VSA on-premise using their servers or utilize Kaseya's cloud-based SaaS solution. Kaseya VSA is a remote management and monitoring solution commonly used by managed service providers to support their customers. Kaseya has released a security update for the VSA zero-day vulnerabilities used by the REvil ransomware gang to attack MSPs and their customers.
0 Comments
Leave a Reply. |