Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
It is possible to exploit a Time of Check & Time of Use (TOCTOU) vulnerability by winning a race condition when Kaseya Virtual System Administrator agent 9.3.0.11 and earlier tries to execute its binaries from working and/or temporary folders. Successful exploitation results in the execution of arbitrary programs with "NT AUTHORITY\SYSTEM" privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kaseya Virtual System Administrator agent 安全漏洞
Vulnerability Description
Kaseya Virtual System Administrator是瑞士卡西亚(Kaseya)公司的一套用于简化和自动化IT服务的IT系统管理平台。Kaseya Virtual System Administrator agent是其中的一个代理程序。 Kaseya Virtual System Administrator agent 9.3.0.11及之前版本中存在安全漏洞。攻击者可利用该漏洞以NT AUTHORITY\SYSTEM权限执行任意程序。
CVSS Information
N/A
Vulnerability Type
N/A