CVE-2017-18362: SQL Injection in ManagedITSync Integration | Huntress
ATT&CK techniques detected
T1190Exploit Public-Facing Application
98%
"cve - 2017 - 18362 : sql injection in manageditsync integration | huntress a vulnerability was discovered and disclosed in late 2017 that affected the connectwise manageditsync integration, designed to sync data between the connectwise manage psa and the kaseya vsa rmm. this vuln…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
T1486Data Encrypted for Impact
70%
"entirely possible other attackers have known about this vulnerability and may already have a foothold within your system. disconnecting the vsa server will at least prevent it from deploying ransomware while you investigate. next you should thoroughly audit your vsa server and an…"
Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.
No matches for .
Loading techniques…
Summary
A vulnerability was discovered and disclosed in late 2017 that affected the ConnectWise ManagedITSync integration, designed to sync data between the ConnectWise Manage PSA and the Kaseya VSA RMM.