sysaid Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by sysaid
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
XML External Entity Vulnerability in SysAid On-Prem Software
CVE-2025-2777SysaidSysaid On-premπΎπ‘EPSS 13%9.3CRITICALUnauthenticated XML External Entity Vulnerability in SysAid On-Prem Software
CVE-2025-2776SysaidSysaid On-premπΎπ‘EPSS 13%9.3CRITICALUnauthenticated XML External Entity Vulnerability in SysAid On-Prem Product
CVE-2025-2775SysaidSysaid On-premπΎπ‘9.3CRITICALImproper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
CVE-2024-36394SysaidSysaid9.8CRITICALImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CVE-2024-36393SysaidSysaid9.8CRITICALCWE-918: Server-Side Request Forgery (SSRF) may allow exposing the local OS user's NTLMv2 hash
CVE-2024-27775SysaidSysaid7.2HIGHPath Traversal Vulnerability Leads to Code Execution in SysAid On-Premise Before 23.3.36
CVE-2023-47246SysaidSysaid On-premisesπ°πΎπ‘EPSS 94%π¦ 9.8CRITICALSysaid - CWE-434: Unrestricted Upload of File with Dangerous Type
CVE-2023-32225SysaidSysaid9.8CRITICALSysaid - CWE-552: Files or Directories Accessible to External Parties
CVE-2023-32226SysaidSysaid8.3HIGHSysaid β Sysaid System Takeover
CVE-2022-22796SysaidSysaid7HIGHUnrestricted File Upload Vulnerability in SysAid ITIL Software
CVE-2021-43973SysaidSysaid8.8HIGHSQL Injection Vulnerability in SysAid ITIL Remote Access
CVE-2021-43971SysaidSysaid8.8HIGHSQL Injection Vulnerability in SysAid by SysAid Technologies
CVE-2021-30486SysaidSysaid8.8HIGHRemote Command Execution Flaw in SysAid On-Premise by SysAid Technologies
CVE-2020-10569SysaidOn-premise9.8CRITICAL
7 May 2025
6 June 2024
28 March 2024
10 November 2023
30 July 2023
12 May 2022
11 January 2022
22 July 2021
21 April 2020
No more vulnerabilities to load.