CVE-2025-2777

Published May 7, 2025

Last updated 2 months ago

CVSS critical 9.3

Overview

Description
SysAid On-Prem versions <= 23.3.40 are vulnerable to an unauthenticated XML External Entity (XXE) vulnerability in the lshw processing functionality, allowing for administrator account takeover and file read primitives.
Source
disclosure@vulncheck.com
NVD status
Awaiting Analysis

Risk scores

CVSS 3.1

Type
Secondary
Base score
9.3
Impact score
4.7
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
Severity
CRITICAL

Weaknesses

disclosure@vulncheck.com
CWE-611

Social media

Hype score
Not currently trending

  1. 🚨 CVE-2025-2777 - critical 🚨 SysAid On-Prem &lt;= 23.3.40 - XML External Entity &gt; SysAid On-Prem versions &lt;= 23.3.40 are vulnerable to an unauthenticated XML External ... 👾 https://t.co/5JzXdspRQR @pdnuclei #NucleiTemplates #cve

    @pdnuclei_bot

    10 May 2025

    299 Impressions

    1 Retweet

    7 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 CVE-2025-2777 ⚠️🔴 CRITICAL (9.3) 🏢 SysAid - SysAid On-Prem 🏗️ 0 🔗 https://t.co/MXeJQatEux 🔗 https://t.co/MGBgbjIodd #CyberCron #VulnAlert #InfoSec https://t.co/tOD1bQRfOt

    @cybercronai

    9 May 2025

    48 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-2777 SysAid On-Prem versions &lt;= 23.3.40 are vulnerable to an unauthenticated XML External Entity (XXE) vulnerability in the lshw processing functionality, allowing for admi… https://t.co/mylBOkrcCV

    @CVEnew

    7 May 2025

    154 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. [CVE-2025-2777: CRITICAL] SysAid On-Prem version &lt;= 23.3.40 has an unauthenticated XXE vulnerability in lshw processing, enabling admin account takeover and file access. #cybersecurity#cve,CVE-2025-2777,#cybersecurity https://t.co/I3UH1gKtcM https://t.co/9kbnomuhTY

    @CveFindCom

    7 May 2025

    43 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. We are sharing SysAid instances likely vulnerable to CVE-2025-2775, CVE-2025-2776, CVE-2025-2777 (XXEs) any of which combined with CVE-2025-2778 allows for RCE. 77 IPs found unpatched so far (version check). Install updates from SysAid (from March!) https://t.co/SNVkIeSfF3 h

    @Shadowserver

    7 May 2025

    37 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  6. [SysAid fixes four critical vulnerabilities that enable RCE] SysAid has released an update for the on-premise version of its software that eliminates four critical vulnerabilities at once — CVE-2025-2775, CVE-2025-2776, CVE-2025-2777 and CVE-2025-2778. Vulnerabilities allowe

    @NGT_Cybercrime

    7 May 2025

    52 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. 📌 قامت SysAid بإصلاح أربع ثغرات حرجة في إصدارها المحلي من برنامج دعم تكنولوجيا المعلومات، تسمح بتنفيذ تعليمات برمجية عن بُعد دون مصادقة، مع حقوق مرتفعة. ال

    @Cybercachear

    7 May 2025

    42 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

References

Sources include official advisories and independent security research.