Open Redirect Vulnerability in Kaseya Virtual System Administrator
CVE-2015-2863

Currently unrated

Key Information:

Vendor

Kaseya

Status
Virtual System Administrator
Vendor
CVE Published:
20 July 2015

What is CVE-2015-2863?

An open redirect vulnerability exists in Kaseya's Virtual System Administrator, allowing remote attackers to redirect users to arbitrary websites. This exploit can be leveraged to conduct phishing attacks, potentially compromising sensitive user data and undermining the integrity of the application. Affected versions include Kaseya VSA 7.x prior to 7.0.0.29, 8.x prior to 8.0.0.18, 9.0 prior to 9.0.0.14, and 9.1 prior to 9.1.0.4.

References

http://www.kb.cert.org/vuls/id/919604
third-party-advisoryx_refsource_CERT-VN

EPSS Score

49% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.