CVE-2022-40325: XSS
First published: Sun Sep 11 2022(Updated: )
SysAid Help Desk before 22.1.65 allows XSS via the Asset Dashboard, aka FR# 67262.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SysAid IT service and help desk software | <22.1.65 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-40325?
CVE-2022-40325 is a vulnerability in SysAid Help Desk before version 22.1.65 that allows cross-site scripting (XSS) attacks via the Asset Dashboard.
How severe is CVE-2022-40325?
CVE-2022-40325 has a severity rating of 6.1 (medium).
How does CVE-2022-40325 affect SysAid Help Desk?
CVE-2022-40325 affects SysAid Help Desk versions before 22.1.65.
What is the Common Vulnerabilities and Exposures (CVE) ID of this vulnerability?
The Common Vulnerabilities and Exposures (CVE) ID of this vulnerability is CVE-2022-40325.
How can I fix CVE-2022-40325 in SysAid Help Desk?
To fix CVE-2022-40325, upgrade SysAid Help Desk to version 22.1.65 or later.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/severity
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/sysaid
- canonical/sysaid it service and help desk software