← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-47246 — Actively Exploited: SysAid Server (SysAid)

SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.

CVE IDCVE-2023-47246
VendorSysAid
ProductSysAid Server
Vulnerability nameSysAid Server Path Traversal Vulnerability
Date added2023-11-13
Remediation due2023-12-04
Known ransomware useKnown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionSysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →