Cybersecurity Alerts

SysAid Server Path Traversal Vulnerability

SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Weakness Classification

CWE-22

References

• https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification
• https://nvd.nist.gov/vuln/detail/CVE-2023-47246