CVE-2023-47246: SysAid Zero-Day Vulnerability Exploited By Lace Tempest

A new zero-day vulnerability (CVE-2023-47246) in SysAid IT service management software is being exploited by the threat group responsible for the MOVEit Transfer attack in May 2023.

attack cve cve-2023-47246 emergent threat response exploited it service management lace tempest management may may 2023 moveit moveit transfer responsible service service management software sysaid tempest threat threat group transfer vulnerability vulnerability exploited vulnerability risk management zero-day zero-day vulnerability