← ExploitWatch
HomeExploited Vulnerabilities

CVE-2025-2776 — Actively Exploited: SysAid On-Prem (SysAid)

SysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Server URL processing functionality, allowing for administrator account takeover and file read primitives.

CVE IDCVE-2025-2776
VendorSysAid
ProductSysAid On-Prem
Vulnerability nameSysAid On-Prem Improper Restriction of XML External Entity Reference Vulnerability
Date added2025-07-22
Remediation due2025-08-12
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionSysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Server URL processing functionality, allowing for administrator account takeover and file read primitives.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →