The vulnerability of the software for automation of support and control of hardware and software systems from SysAid allows a perpetrator to execute arbitrary code.

The vulnerability of the doPost method in the UserEntry class of the com.ilient.server package in the SysAid software for hardware and software support and control involves the possibility of path traversal. Exploiting this vulnerability allows an attacker to execute arbitrary code by loading...