2 matches found
CVE-2023-32225
CVE-2023-32225 affects Sysaid. Issue: Unrestricted upload of a dangerous file type via an unspecified method, exploitable by a malicious user with administrative privileges. Affected: Sysaid versions prior to 23.2.14 b18 (per CNNVD); no fixed version explicitly stated across all sources, PT-Secur...
CVE-2023-32226
CVE-2023-32226 affects SysAid (SysAid IT service management). The issue is described as CWE-552: Files or Directories Accessible to External Parties, allowing an authenticated user to exfiltrate files from the server via an unspecified method. Some sources indicate affected versions are earlier t...