Kaseya Community

Shared Reports Security Flaw

  • I found this morning that one of my shared/public reports had been edited by a VSA admin other than me. I double checked the perms on the folder and the report and they were correct. I logged in as a user with "View" only access to the report and sure enough the edit button on the tool bar is grayed out, along with the right click edit button. I tracked down the VSA admin and he said all he had to do was double click the report to edit the settings... to my surprise he was correct. I've got a ticket going with K support, but could someone verify this behavior for me?

  • I can confirm this happens with our system as well.