CVE-2017-18362

ConnectWise ManagedITSync integration for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct access to the Kaseya VSA database. Vendor/Product: Kaseya Virtual System/Server Administrator (VSA). Added to CISA KEV 2022-05-24; required action: The impacted product is end-of-life and should be disconnected if still in use.