Microsoft has issued a warning regarding the exploitation of a vulnerability in SysAid’s system management software, specifically for distributing the notorious Clop ransomware. Recently, a vulnerability in SysAid’s system management software was uncovered, and the software provider confirmed the existence of this CVE-2023-47246 vulnerability, cautioning that it could be actively exploited. This vulnerability is classified as a “path traversal” vulnerability, which allows an attacker to access files or directories outside of the intended scope.
Microsoft: Exploitation of SysAid vulnerability used to spread Clop ransomware.
