CVE Tracker

CVE ID	Severity	EPSS	Vendor	Description	Date	Status
CVE-2025-2776	High	62.6%	SysAidSysAid On-Prem	SysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Server URL processing functionality, allowing for administrator account takeover and file read primitives.	Jul 22, 2025	KEV
CVE-2025-2775	High	69.8%	SysAidSysAid On-Prem	SysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Checkin processing functionality, allowing for administrator account takeover and file read primitives.	Jul 22, 2025	KEV
CVE-2023-47246	High	94.3%	SysAidSysAid Server	SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.	Nov 13, 2023	KEV

CVE-2025-2776KEV

High

SysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Server URL processing functionality, allowing for administrator account takeover and file read primitives.

SysAidEPSS 62.6%

CVE-2025-2775KEV

High

SysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Checkin processing functionality, allowing for administrator account takeover and file read primitives.

SysAidEPSS 69.8%

CVE-2023-47246KEV

High

SysAid Server (on-premises version) contains a path traversal vulnerability that leads to code execution.

SysAidEPSS 94.3%