Vulnerabilities

CVE-2025-2775

by Fred · 07/05/2025

SysAid On-Prem versions <= 23.3.40 are vulnerable to an unauthenticated XML External Entity (XXE) vulnerability in the Checkin processing functionality, allowing for administrator account takeover and file read primitives. Assigner : disclosure@vulncheck.com More information : https://documentation.sysaid.com/docs/24-40-60

Similar

Tags: Cybersecurity Alert