CVE-2015-6589

high-risk
Published 2020-02-13

Directory traversal vulnerability in Kaseya Virtual System Administrator (VSA) 7.0.0.0 before 7.0.0.33, 8..0.0.0 before 8.0.0.23, 9.0.0.0 before 9.0.0.19, and 9.1.0.0 before 9.1.0.9 allows remote authenticated users to write to and execute arbitrary files due to insufficient restrictions in file paths to json.ashx.

Do I need to act?

!
15.2% chance of exploitation in next 30 days
EPSS score — higher than 85% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
2 public exploits available
38351, 43882
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Kaseya

References (8)

Exploit http://packetstormsecurity.com/files/133782/Kaseya-Virtual-System-Administrator-...
Third Party Advisory http://www.zerodayinitiative.com/advisories/ZDI-15-450
Exploit https://www.exploit-db.com/exploits/38351/
Third Party Advisory https://www.securityfocus.com/bid/76838
Exploit http://packetstormsecurity.com/files/133782/Kaseya-Virtual-System-Administrator-...
Third Party Advisory http://www.zerodayinitiative.com/advisories/ZDI-15-450
Exploit https://www.exploit-db.com/exploits/38351/
Third Party Advisory https://www.securityfocus.com/bid/76838
55
/ 100
high-risk
Severity 30/34 · Critical
Exploitability 20/34 · Moderate
Exposure 5/34 · Minimal