Back to KEVs

CVE-2023-47246

In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot,...

Basic Information

CVE State
PUBLISHED
Reserved Date
November 04, 2023
Published Date
November 10, 2023
Last Updated
August 02, 2024
Vendor
n/a
Product
n/a
Description
In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023.

CVSS Scores

CVSS v3.1

9.8 - CRITICAL

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SSVC Information

Exploitation
active
Automatable
Yes
Technical Impact
total

Exploit Status

Exploited in the Wild
Yes (added 2023-11-13 00:00:00 UTC) Source
Proof of Concept Available
Yes (added 2023-11-17 07:03:06 UTC) Source
Used in Malware
Yes (added 2023-11-13 00:00:00 UTC) Source

References

https://documentation.sysaid.com/docs/on-premise-security-enhancements-2023 https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification https://documentation.sysaid.com/docs/latest-version-installation-files

Known Exploited Vulnerability Information

Source Added Date
CISA 2023-11-13 00:00:00 UTC

Scanner Integrations

Scanner URL Date Detected
Nuclei https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-47246.yaml 2025-04-26 00:00:00 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

W01fh4cker/CVE-2023-47246-EXP

Type: github • Created: 2023-11-17 07:03:06 UTC • Stars: 52

exploit for cve-2023-47246 SysAid RCE (shell upload)