PT-2025-20134 · Sysaid · Sysaid On-Prem
Jake Knott
+2
·
Published
2025-01-06
·
Updated
2026-01-22
·
CVE-2025-2776
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SysAid On-Prem versions 23.3.40 and earlier
Description
SysAid On-Prem is affected by an unauthenticated XML External Entity (XXE) issue in the Server URL processing functionality. This allows for administrator account takeover and file read operations. The issue is due to improper restriction of XML external entity references. Reports indicate active exploitation of this issue.
Recommendations
Versions prior to 23.3.40 should be updated.
Exploit
Fix
RCE
XXE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sysaid On-Prem