CVE-2021-43972

EUVD-2021-30834
An unrestricted file copy vulnerability in /UserSelfServiceSettings.jsp in SysAid ITIL 20.4.74 b10 allows a remote authenticated attacker to copy arbitrary files on the server filesystem to the web root (with an arbitrary filename) via the tempFile and fileName parameters in the HTTP POST body.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 45%
Affected Products (NVD)
VendorProductVersion
sysaidsysaid
20.4.74:b10
𝑥
= Vulnerable software versions
References
https://github.com/atredispartners/advisories/blob/master/ATREDIS-2021-0002.md
https://github.com/atredispartners/advisories/blob/master/ATREDIS-2022-0001.md
https://www.sysaid.com/it-service-management-software/incident-management
https://github.com/atredispartners/advisories/blob/master/ATREDIS-2021-0002.md
https://github.com/atredispartners/advisories/blob/master/ATREDIS-2022-0001.md
https://www.sysaid.com/it-service-management-software/incident-management