CVE-2023-47246 - OpenCVE

In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Sysaid	Sysaid

Configuration 1 [-]

cpe:2.3:a:sysaid:sysaid:*:*:*:*:on-premises:*:*:*

No data.

References

Link	Providers
https://documentation.sysaid.com/docs/latest-version-installation-files
https://documentation.sysaid.com/docs/on-premise-security-enhancements-2023
https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification

History

Wed, 14 Aug 2024 17:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Sysaid sysaid
CPEs	cpe:2.3:a:sysaid:sysaid_on-premises::::::::	cpe:2.3:a:sysaid:sysaid:::::on-premises:::*
Vendors & Products	Sysaid sysaid On-premises	Sysaid sysaid

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-11-10T00:00:00

Updated: 2024-08-02T21:09:36.042Z

Reserved: 2023-11-04T00:00:00

Link: CVE-2023-47246

Vulnrichment

Updated: 2024-08-02T21:09:36.042Z

NVD

Status : Analyzed

Published: 2023-11-10T06:15:30.510

Modified: 2024-08-14T17:02:12.370

Link: CVE-2023-47246

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-47246", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-08-02T21:09:36.042Z", "dateReserved": "2023-11-04T00:00:00", "datePublished": "2023-11-10T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-11-10T05:42:44.754806"}, "descriptions": [{"lang": "en", "value": "In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://documentation.sysaid.com/docs/on-premise-security-enhancements-2023"}, {"url": "https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification"}, {"url": "https://documentation.sysaid.com/docs/latest-version-installation-files"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-22", "lang": "en", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "affected": [{"vendor": "sysaid", "product": "sysaid_on-premises", "cpes": ["cpe:2.3:a:sysaid:sysaid_on-premises:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "23.3.36", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-04-06T04:00:38.286026Z", "id": "CVE-2023-47246", "options": [{"Exploitation": "active"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2023-11-13", "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2023-47246"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-06T13:52:50.136Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T21:09:36.042Z"}, "title": "CVE Program Container", "references": [{"url": "https://documentation.sysaid.com/docs/on-premise-security-enhancements-2023", "tags": ["x_transferred"]}, {"url": "https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification", "tags": ["x_transferred"]}, {"url": "https://documentation.sysaid.com/docs/latest-version-installation-files", "tags": ["x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://documentation.sysaid.com/docs/on-premise-security-enhancements-2023", "tags": ["x_transferred"]}, {"url": "https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification", "tags": ["x_transferred"]}, {"url": "https://documentation.sysaid.com/docs/latest-version-installation-files", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T21:09:36.042Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2023-47246", "role": "CISA Coordinator", "options": [{"Exploitation": "active"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-04-06T04:00:38.286026Z"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2023-11-13", "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2023-47246"}}}], "affected": [{"cpes": ["cpe:2.3:a:sysaid:sysaid_on-premises:*:*:*:*:*:*:*:*"], "vendor": "sysaid", "product": "sysaid_on-premises", "versions": [{"status": "affected", "version": "0", "lessThan": "23.3.36", "versionType": "custom"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-22", "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-06T13:46:34.874Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://documentation.sysaid.com/docs/on-premise-security-enhancements-2023"}, {"url": "https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification"}, {"url": "https://documentation.sysaid.com/docs/latest-version-installation-files"}], "descriptions": [{"lang": "en", "value": "In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-11-10T05:42:44.754806"}}}, "cveMetadata": {"cveId": "CVE-2023-47246", "state": "PUBLISHED", "dateUpdated": "2024-08-02T21:09:36.042Z", "dateReserved": "2023-11-04T00:00:00", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2023-11-10T00:00:00", "assignerShortName": "mitre"}, "dataVersion": "5.1"}

{"cisaActionDue": "2023-12-04", "cisaExploitAdd": "2023-11-13", "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.", "cisaVulnerabilityName": "SysAid Server Path Traversal Vulnerability", "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sysaid:sysaid:*:*:*:*:on-premises:*:*:*", "matchCriteriaId": "239AAC8E-10BF-4280-8BEB-F85F71670F5B", "versionEndExcluding": "23.3.36", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "In SysAid On-Premise before 23.3.36, a path traversal vulnerability leads to code execution after an attacker writes a file to the Tomcat webroot, as exploited in the wild in November 2023."}, {"lang": "es", "value": "En SysAid On-Premise anterior al 23.3.36, una vulnerabilidad de path traversal conduce a la ejecuci\u00f3n de c\u00f3digo despu\u00e9s de que un atacante escribe un archivo en la ra\u00edz web de Tomcat, tal como se explot\u00f3 en noviembre de 2023."}], "id": "CVE-2023-47246", "lastModified": "2024-08-14T17:02:12.370", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2023-11-10T06:15:30.510", "references": [{"source": "cve@mitre.org", "tags": ["Product"], "url": "https://documentation.sysaid.com/docs/latest-version-installation-files"}, {"source": "cve@mitre.org", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://documentation.sysaid.com/docs/on-premise-security-enhancements-2023"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Vendor Advisory"], "url": "https://www.sysaid.com/blog/service-desk/on-premise-software-security-vulnerability-notification"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-22"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}