CVE-2021-30116: Kaseya Virtual System/Server Administrator (VSA)

Kaseya Virtual System/Server Administrator (VSA) Information Disclosure Vulnerability. Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system.

• CISA KEV-listed (remediation due 2021-11-17)
• used in ransomware campaigns
• EPSS 54.1% (98.1% percentile)

Browse the CVE database

Read the full analysis on IntelFusions