CVE-2015-6589

HIGH

Kaseya Virtual System Administrator < 7.0.0.33 - Path Traversal

Title source: rule

Description

Directory traversal vulnerability in Kaseya Virtual System Administrator (VSA) 7.0.0.0 before 7.0.0.33, 8..0.0.0 before 8.0.0.23, 9.0.0.0 before 9.0.0.19, and 9.1.0.0 before 9.1.0.9 allows remote authenticated users to write to and execute arbitrary files due to insufficient restrictions in file paths to json.ashx.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Pedro Ribeiro · textwebappsasp

https://www.exploit-db.com/exploits/38351

View Code ZIP pw:eip

exploitdb WORKING POC

by Pedro Ribeiro · rubywebappsasp

https://www.exploit-db.com/exploits/43882

View Code ZIP pw:eip

References (4)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/133782/Kaseya-Virtual-System-Administrator-Code-Execution-Privilege-Escalation.html

[Third Party Advisory, VDB Entry] http://www.zerodayinitiative.com/advisories/ZDI-15-450

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/38351/

[Third Party Advisory, VDB Entry] https://www.securityfocus.com/bid/76838

Scores

CVSS v3 8.8

EPSS 0.1516

EPSS Percentile 94.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-22

Status published

Products (1)

kaseya/virtual_system_administrator 7.0.0.0 - 7.0.0.33

Published Feb 13, 2020

Tracked Since Feb 18, 2026