Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Sysaid - CWE-552: Files or Directories Accessible to External Parties
Vulnerability Description
Sysaid - CWE-552: Files or Directories Accessible to External Parties - Authenticated users may exfiltrate files from the server via an unspecified method.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H
Vulnerability Type
对外部实体的文件或目录可访问
Vulnerability Title
Sysaid Technologies SysAid 安全漏洞
Vulnerability Description
Sysaid Technologies SysAid是以色列Sysaid Technologies公司的一套IT服务管理解决方案。 Sysaid Technologies SysAid 23.2.14 b18之前版本存在安全漏洞,该漏洞源于经过身份验证的用户可能会通过未指定的方法从服务器中窃取文件。
CVSS Information
N/A
Vulnerability Type
N/A