Lucene search

INCIBECVELIST:CVE-2023-2809

HistoryOct 04, 2023 - 10:49 a.m.

CVE-2023-2809 Use of Cleartext credentials in Sage 200 Spain

2023-10-0410:49:56

CWE-312

INCIBE

www.cve.org

cve-2023-2809

sage 200 spain

cleartext credentials

sql database

remote attacker

dll application

remote execution

ms sql commands

privilege escalation

windows systems

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

62.0%

JSON

Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL commands and escalate privileges on Windows systems because the credentials are stored in plaintext.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Sage 200 Spain",
    "vendor": "Sage",
    "versions": [
      {
        "status": "affected",
        "version": "2023.38.001"
      }
    ]
  }
]

References

www.incibe.es/en/incibe-cert/notices/aviso/use-cleartext-credentials-sage-200

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

10 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

62.0%

JSON

Related for CVELIST:CVE-2023-2809