These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.
CVE-2017-18362 is a SQL injection vulnerability in Kaseya Virtual System/Server Administrator (VSA) that CISA added to the Known Exploited Vulnerabilities catalog. The supplied CISA record says the impacted product is end-of-life, should be disconnected if still in use, and has known ransomware campaign use.
CVE-2018-20753 is an official vulnerability identifier for a Kaseya Virtual System/Server Administrator (VSA) remote code execution issue. CISA added it to the Known Exploited Vulnerabilities (KEV) catalog on 2022-04-13 and marked it with known ransomware campaign use, which makes it a high-priority remediation item for any environment running Kaseya VSA.
CVE-2021-30116 is a Kaseya Virtual System/Server Administrator (VSA) information disclosure vulnerability that CISA added to the Known Exploited Vulnerabilities catalog on 2021-11-03. CISA marked the issue as known to be used in ransomware campaigns and set a remediation due date of 2021-11-17, making this a high-priority item for VSA operators.