← ExploitWatch
HomeExploited Vulnerabilities

CVE-2018-20753 — Actively Exploited: Virtual System/Server Administrator (VSA) (Kaseya)

Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices.

CVE IDCVE-2018-20753
VendorKaseya
ProductVirtual System/Server Administrator (VSA)
Vulnerability nameKaseya VSA Remote Code Execution Vulnerability
Date added2022-04-13
Remediation due2022-05-04
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionKaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →