PULSE
LIVE44signals / 24h
FEED
ransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransomgunra reclama a Dissinger and Dissinger Law Firm · US · Business Servicesransomplay reclama a Boston Electric and Telephone · US · Telecommunicationransomplay reclama a Wring Group · GB · Not Foundransomincransom reclama a asa-international.com · GB · Business Servicesransomplay reclama a AG Scholtes · NL · Manufacturingransomplay reclama a Andorra Life · AD · Healthcareransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransomgunra reclama a Dissinger and Dissinger Law Firm · US · Business Servicesransomplay reclama a Boston Electric and Telephone · US · Telecommunicationransomplay reclama a Wring Group · GB · Not Foundransomincransom reclama a asa-international.com · GB · Business Servicesransomplay reclama a AG Scholtes · NL · Manufacturingransomplay reclama a Andorra Life · AD · Healthcare
← All CVEs
CVE Watch

CVE-2018-20753

Kaseya VSA Remote Code Execution Vulnerability

CVSS

No CVSS

EPSS

29.6%

p98

KEV

YES

Apr 13, 2022

Exploit Today

79

0-100

Published: · Last modified:

EPSS · 30d
29.6%EPSS · 30 days29.6%
2026-06-302026-07-16
KEV catalog record

Product

Kaseya / Virtual System/Server Administrator (VSA)

Vulnerability

Kaseya VSA Remote Code Execution Vulnerability

Added to KEV

Apr 13, 2022

Remediate by

May 4, 2022

Known ransomware use

Yes

Summary description

Kaseya VSA RMM allows unprivileged remote attackers to execute PowerShell payloads on all managed devices.

Required action

Apply updates per vendor instructions.

Notes

https://nvd.nist.gov/vuln/detail/CVE-2018-20753

Related CVEs
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2017-18362
99.7%
KEV80Kaseya VSA SQL Injection Vulnerability
CVE-2021-30116
99.7%
KEV80Kaseya Virtual System/Server Administrator (VSA) Information Disclosure Vulnerability