Kaseya has released emergency updates that fix vulnerabilities in the Virtual System Administrator (VSA) software, the hack of which impacted 1.5 thousand companies around the world.

Following the incident, Kaseya has urged VSA users to shut down their servers until a patch is ready. Ten days later, the company has released VSA 9.5.7a (9.5.7.2994) version to fix the three new vulnerabilities:

CVE-2021-30116 - credential leak and logic flaw;

CVE-2021-30119 - cross-site scripting;

Cve-2021-30120 - two-factor authentication bypass.

In addition to deploying a patch for VSA on-premises, the company has also initiated a recovery of the VSA SaaS infrastructure.

Source: securitylab.ru