Lucene search
+L

8 matches found

redhatcve
redhatcve
added 2025/05/23 1:58 a.m.11 views

CVE-2023-47246

In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023...

9.8CVSS7.4AI score0.98851EPSS
Exploits3References1
githubexploit
githubexploit
added 2024/11/23 5:21 a.m.284 views

Exploit for Path Traversal in Sysaid

cve-2023-47246-poc CVE-2023-47246 is a path traversal vulner...

9.8CVSS7.8AI score0.98851EPSS
Exploits3
githubexploit
githubexploit
added 2023/11/17 7:3 a.m.559 views

Exploit for Path Traversal in Sysaid

Vulnerability Details 1. fofa: text body="sysaid-lo...

9.8CVSS9.7AI score0.98851EPSS
Exploits3
nvd
nvd
added 2023/11/10 6:15 a.m.28 views

CVE-2023-47246

In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023...

9.8CVSS0.98851EPSS
Exploits3References4
attackerkb
attackerkb
added 2023/11/10 12:0 a.m.54 views

CVE-2023-47246

In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023. Recent assessments: cbeek-r7 at November 09, 2023 2:50pm UTC reported: On November 8, 2023, SysAid, an IT...

9.8CVSS9.5AI score0.98851EPSS
In wildExploits3References5
cve
cve
added 2023/11/10 12:0 a.m.329 views

CVE-2023-47246

CVE-2023-47246 affects SysAid On-Premise prior to 23.3.36, where improper validation of user-supplied paths enables a path traversal leading to code execution by writing a file into the Tomcat webroot. Exploited in the wild during November 2023 (Lace Tempest activity) with reports of attackers de...

9.8CVSS9.4AI score0.98851EPSS
In wildExploits3References4Affected Software1
circl
circl
added 2023/11/09 2:10 p.m.14 views

CVE-2023-47246

creationtimestamp| type| source ---|---|--- 2023-11-09 14:10:24+00:00| exploited| https://t.me/informationsecuritychannel/50972 2023-11-09 16:08:00+00:00| seen| https://t.me/ctinow/148364 2023-11-09 17:17:30+00:00| exploited| https://t.me/CyberWatchinsider/190 2023-11-09 17:33:49+00:00| seen|...

9.8CVSS7.1AI score0.98851EPSS
In wildExploits3References34
malwarebytes
malwarebytes
added 2023/11/09 1:43 p.m.48 views

Update now! SysAid vulnerability is actively being exploited by ransomware affiliate

Users of SysAid on-premises should take action to deal with a vulnerability. SysAid is a widely used IT service management solution that allows IT teams to manage tasks. Microsoft discovered an ongoing exploitation of a zero-day vulnerability in the SysAid IT support software in limited attacks b...

7.5CVSS7.9AI score0.98851EPSS
Exploits3
Rows per page
Query Builder