Beware of New SysAid Vulnerabilities CVE-2023-32225 and CVE-2023-32226
If you’re using SysAid, we’ve got some important news for you. Recently, two new vulnerabilities have been identified that could potentially allow malicious users to wreak havoc on your system. These vulnerabilities are coded as CVE-2023-32225 and CVE-2023-32226. Let’s take a closer look at what these vulnerabilities mean for you.
The Danger of CVE-2023-32225
CVE-2023-32225 is a serious vulnerability that involves unrestricted file upload. In layman’s terms, this means that someone with administrative privileges could sneak in a malicious file into your system. This file could potentially contain code that, when executed, gives the attacker control over your system.
We call this a Remote Code Execution (RCE) vulnerability. It’s as bad as it sounds. It’s like handing over the keys to your system to an attacker. Scary, right?
The Threat of CVE-2023-32226
Next, let’s talk about CVE-2023-32226. This vulnerability is a bit different but equally dangerous. It allows an authenticated user to download files from your server arbitrarily. This is known as an arbitrary file download vulnerability.
In plain English, this means that an attacker could potentially get their hands on any file they want from your server. Think about it. Your sensitive data, your confidential files, all up for grabs. That’s a risk you don’t want to take.
Update to Stay Safe
The good news is, there’s a way to protect your system from these vulnerabilities. SysAid has released version 23.2.14 b18 (On-Prem) which mitigates these vulnerabilities.
Sources used:
