Vulnerabilities > Kaseya > Virtual System Administrator > 9.2.0.20

DATE CVE VULNERABILITY TITLE RISK
2019-08-26 CVE-2019-15506 Missing Authentication for Critical Function vulnerability in Kaseya Virtual System Administrator
An issue was discovered in Kaseya Virtual System Administrator (VSA) through 9.4.0.37.
network
low complexity
kaseya CWE-306
7.5
2018-03-26 CVE-2017-12410 Race Condition vulnerability in Kaseya Virtual System Administrator
It is possible to exploit a Time of Check & Time of Use (TOCTOU) vulnerability by winning a race condition when Kaseya Virtual System Administrator agent 9.3.0.11 and earlier tries to execute its binaries from working and/or temporary folders.
local
high complexity
kaseya CWE-362
7.4