CVE-2023-47246: SysAid Server Path Traversal Vulnerability. SysAid Server

SysAid Server Path Traversal Vulnerability. SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.

• CISA KEV-listed (remediation due 2023-12-04)
• used in ransomware campaigns
• EPSS 94.4% (100.0% percentile)

Detection rules

• Lace Tempest PowerShell Evidence Eraser high
• Lace Tempest PowerShell Launcher high

Browse the CVE database

Read the full analysis on IntelFusions