CVE-2015-6922

Kaseya Virtual System Administrator (VSA) 7.x before 7.0.0.33, 8.x before 8.0.0.23, 9.0 before 9.0.0.19, and 9.1 before 9.1.0.9 does not properly require authentication, which allows remote attackers to bypass authentication and (1) add an administrative account via crafted request to LocalAuth/setAccount.aspx or (2) write to and execute arbitrary files via a full pathname in the PathData parameter to ConfigTab/uploader.aspx.

Published: Feb 17, 2020
Updated: Apr 13, 2023
CVE: CVE-2015-6922
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
kaseya / virtual_system_administrator	9.1.0.0	9.1.0.9
kaseya / virtual_system_administrator	9.0.0.0	9.0.0.19
kaseya / virtual_system_administrator	8.0.0.0	8.0.0.23
kaseya / virtual_system_administrator	7.0.0.0	7.0.0.33

Vulnerability Database

289,689

CVE-2015-6922