CVE-2015-3000

Name of the Vulnerable Software and Affected Versions SysAid Help Desk versions prior to 15.2

Description The issue allows remote attackers to cause a denial of service, consuming CPU and memory, via a large number of nested entity references in an XML document to API endpoints such as "/agententry", "/rdsmonitoringresponse", or "/androidactions". This is an example of an XML Entity Expansion (XEE) attack.

Recommendations For versions prior to 15.2, update to version 15.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the affected API endpoints "/agententry", "/rdsmonitoringresponse", and "/androidactions" to minimize the risk of exploitation.