← ExploitWatch
HomeExploited Vulnerabilities

CVE-2021-30116 — Actively Exploited: Virtual System/Server Administrator (VSA) (Kaseya)

Kaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system.

CVE IDCVE-2021-30116
VendorKaseya
ProductVirtual System/Server Administrator (VSA)
Vulnerability nameKaseya Virtual System/Server Administrator (VSA) Information Disclosure Vulnerability
Date added2021-11-03
Remediation due2021-11-17
Known ransomware useKnown
Required actionApply updates per vendor instructions.
DescriptionKaseya Virtual System/Server Administrator (VSA) contains an information disclosure vulnerability allowing an attacker to obtain the sessionId that can be used to execute further attacks against the system.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →