In March 2025, SysAid released updates addressing XML external entity vulnerabilities and an OS command injection vulnerability in its on-premise platform. Cybersecurity firm watchTowr Labs has also released proof-of-concept exploit code for four vulnerabilities that were patched during this update.
Key Points
- SysAid is an IT service management platform that has updated its on-premise software to enhance security.
- Two significant vulnerabilities (CVE-2025-2775 and CVE-2025-2776) allow unauthenticated attackers to access sensitive information or cause DoS.
- The vulnerabilities stem from pre-authentication XML external entity (XXE) injection issues within the /mdm endpoint.
- WatchTowr Labs has issued proof-of-concept exploit code for the identified vulnerabilities.
- SysAid’s update aims to protect users from potential attacks exploiting these vulnerabilities.
Why should I read this?
If you’re involved in IT security or managing IT services, this article’s got the lowdown on some serious vulnerabilities you need to be aware of. SysAid’s latest updates are crucial for safeguarding your on-premise systems against potential exploits. Bottom line? Get clued up on these issues before they bite you!