Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-44595

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00621EPSS
Exploits0References1
NVD
NVD
added 2023/04/28 1:15 p.m.22 views

CVE-2022-41400

Sage 300 through 2022 uses a hard-coded 40-byte blowfish key to encrypt and decrypt user passwords and SQL connection strings stored in ISAM database files in the shared data directory. This issue could allow attackers to decrypt user passwords and SQL connection strings...

9.8CVSS9.5AI score0.00621EPSS
Exploits0References1
Prion
Prion
added 2023/04/28 1:15 p.m.20 views

Hardcoded credentials

Sage 300 through 2022 uses a hard-coded 40-byte blowfish key to encrypt and decrypt user passwords and SQL connection strings stored in ISAM database files in the shared data directory. This issue could allow attackers to decrypt user passwords and SQL connection strings...

7.5CVSS9.4AI score0.00621EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/04/28 12:0 a.m.21 views

CVE-2022-41400

Sage 300 through 2022 uses a hard-coded 40-byte blowfish key to encrypt and decrypt user passwords and SQL connection strings stored in ISAM database files in the shared data directory. This issue could allow attackers to decrypt user passwords and SQL connection strings...

9.7AI score0.00621EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/28 12:0 a.m.6 views

Sage Group Sage 300 信任管理问题漏洞

Sage Group Sage 300 is a well-established, closed-source enterprise resource planning ERP solution from Sage Group UK designed to facilitate business management. A security vulnerability exists in Sage Group Sage 300 version 2022 and prior versions that stems from the use of a hard-coded puffer k...

9.8CVSS8.6AI score0.00621EPSS
Exploits0References2
CVE
CVE
added 2023/04/28 12:0 a.m.39 views

CVE-2022-41400

Sage 300 (through 2022) is affected by CVE-2022-41400 due to a hard-coded 40-byte Blowfish key used to encrypt/decrypt user passwords and SQL connection strings stored in ISAM database files in the shared data directory. This weak key mechanism could allow an attacker to decrypt credentials store...

9.8CVSS9.4AI score0.00621EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder