sysaid sysaid_on-premises CVE Vulnerabilities (3)

CVEs: 3 CPE versions: View versions table

Summary

This page lists publicly disclosed CVE vulnerabilities affecting sysaid sysaid_on-premises (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.

CVE	Summary	Source	Max CVSS	EPSS %	Published	Updated
CVE-2023-32226	Sysaid - CWE-552: Files or Directories Accessible to External Parties - Authenticated users may exfiltrate files from the server via an unspecified method.	[email protected]	8.3	0.06%	2023-07-30	2024-11-21
CVE-2023-32225	Sysaid - CWE-434: Unrestricted Upload of File with Dangerous Type - A malicious user with administrative privileges may be able to upload a dangerous filetype via an unspecified method.	[email protected]	9.8	0.07%	2023-07-30	2024-11-21
CVE-2020-13168	SysAid 20.1.11b26 allows reflected XSS via the ForgotPassword.jsp accountid parameter.	[email protected]	6.1	0.53%	2020-10-02	2024-11-21

cvelogic Threat Intelligence