Denial of Service Vulnerability in Kaseya Virtual System Administrator
CVE-2014-2926

Currently unrated

Key Information:

Vendor: Kaseya
Status: Virtual System Administrator
Vendor: CVE Published:; 14 July 2014

What is CVE-2014-2926?

A vulnerability exists in Kaseya Virtual System Administrator (VSA) due to improper handling of certain local user requests. Local users can exploit this flaw, potentially causing a denial of service by triggering a NULL pointer dereference, which leads to application instability and crashes. This issue affects specific versions of Kaseya VSA prior to the latest updates, making it critical for users to ensure their systems are updated to mitigate the risk.

References

http://www.kb.cert.org/vuls/id/204988

third-party-advisoryx_refsource_CERT-VN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 14, 2014
Vulnerability Reserved
Apr 21, 2014