CVE-2018-20753
Kaseya VSA Remote Code Execution Vulnerability
CVSS
—
No CVSS
EPSS
29.6%
p98
KEV
YES
Apr 13, 2022
Exploit Today
79
0-100
Published: — · Last modified: —
29.6%EPSS · 30 days29.6%
2026-06-302026-07-16
Product
Kaseya / Virtual System/Server Administrator (VSA)
Vulnerability
Kaseya VSA Remote Code Execution Vulnerability
Added to KEV
Apr 13, 2022
Remediate by
May 4, 2022
Known ransomware use
Yes
Summary description
Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-20753