Vulnerability detail

Enriched intelligence for a single CVE

9.8

CVSS
Critical

CVE-2018-20753

PUBLISHED

Kaseya VSA RMM before R9.3 9.3.0.35, R9.4 before 9.4.0.36, and R9.5 before 9.5.0.5 allows unprivileged remote attackers to execute PowerShell...

Exploited in the wild Used in malware Remote Low complexity No user interaction

Vendor: Kaseya
Product: VSA RMM
Published: Feb 05, 2019
EPSS: —

Description

Kaseya VSA RMM before R9.3 9.3.0.35, R9.4 before 9.4.0.36, and R9.5 before 9.5.0.5 allows unprivileged remote attackers to execute PowerShell payloads on all managed devices. In January 2018, attackers actively exploited this vulnerability in the wild.

cisa malware ransomware

CVSS scores

CVSS v3.1 9.8 Critical

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0 7.5

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitation status

Exploited in the wild

Recorded 2022-04-13 00:00:00 UTC · Source

Used in malware

Recorded 2022-04-13 00:00:00 UTC · Source

SSVC decision points

Exploitation: active
Automatable: Yes
Technical impact: total

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
CISA	Apr 13, 2022

Timeline

CVE ID Reserved

February 04, 2019
CVE Published to Public

February 05, 2019
Exploit Used in Malware

April 13, 2022
Added to KEVIntel

April 13, 2022