VulnWire
Critical - CVSS 9.8
Known Ransomware Use
Added 11/3/2021

Kaseya Virtual System/Server Administrator (VSA) Information Disclosure Vulnerability

CVE-2021-30116
Action was due by: 11/17/2021
CISA Known Exploited Vulnerability

This vulnerability is part of CISA's Known Exploited Vulnerabilities (KEV) catalog, indicating active exploitation in the wild. It has been observed in ransomware campaigns.

Overview

Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system.

Vendor

Kaseya

Product

Virtual System/Server Administrator (VSA)

Category

Software
Technical Details

Affected Versions

See vendor advisory

Technical Description

This vulnerability was identified in Virtual System/Server Administrator (VSA) by Kaseya. Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system.

Exploitability

High - Known ransomware exploitation

Impact

Complete system compromise possible

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2021-30116

Required Action (CISA)

Apply updates per vendor instructions.

Due Date: 11/17/2021

References
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30116
https://nvd.nist.gov/vuln/detail/CVE-2021-30116
https://www.cisa.gov/known-exploited-vulnerabilities-catalog