Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-34262

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.004EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6250

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00298EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-6243

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00335EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/03/09 11:42 a.m.8 views

CVE-2025-1887

SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to obtain NTLMv2-SSP Hash by changing any of the paths to a UNC path pointing to a server controlled by the attacker...

7.1CVSS6.6AI score0.00335EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/09 11:40 a.m.11 views

CVE-2025-1886

Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials...

7.1CVSS6.3AI score0.00298EPSS
Exploits0References3
NVD
NVD
added 2025/03/07 11:15 a.m.20 views

CVE-2025-1887

SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to obtain NTLMv2-SSP Hash by changing any of the paths to a UNC path pointing to a server controlled by the attacker...

7.1CVSS0.00335EPSS
Exploits0References1
NVD
NVD
added 2025/03/07 11:15 a.m.15 views

CVE-2025-1886

Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials...

7.1CVSS0.00298EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/07 10:56 a.m.19 views

CVE-2025-1887 SMB forced authentication vulnerability in Sage 200 Spain

SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to obtain NTLMv2-SSP Hash by changing any of the paths to a UNC path pointing to a server controlled by the attacker...

7.1CVSS0.00335EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/07 10:56 a.m.8 views

CVE-2025-1887 SMB forced authentication vulnerability in Sage 200 Spain

SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to obtain NTLMv2-SSP Hash by changing any of the paths to a UNC path pointing to a server controlled by the attacker...

7.1CVSS6.9AI score0.00335EPSS
Exploits0References1
CVE
CVE
added 2025/03/07 10:56 a.m.58 views

CVE-2025-1887

CVE-2025-1887 concerns an SMB forced authentication vulnerability in Sage 200 Spain, affected in versions prior to 2025.35.000. An authenticated attacker with administrator privileges can obtain an NTLMv2-SSP hash by redirecting a UNC path to a server under the attacker’s control. The root cause ...

7.1CVSS6.9AI score0.00335EPSS
Exploits0References1
CVE
CVE
added 2025/03/07 10:55 a.m.76 views

CVE-2025-1886

CVE-2025-1886 describes a Pass-Back vulnerability in Sage 200 Spain, affecting versions prior to 2025.35.000. An authenticated user with administrator privileges can disclose stored SMTP credentials, indicating a confidentiality impact. The issue is documented across multiple sources (NVD, Red Ha...

7.1CVSS6.6AI score0.00298EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/07 10:55 a.m.17 views

CVE-2025-1886 Pass-Back vulnerability in Sage 200 Spain

Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials...

7.1CVSS0.00298EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/07 10:55 a.m.14 views

CVE-2025-1886 Pass-Back vulnerability in Sage 200 Spain

Pass-Back vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to discover stored SMTP credentials...

7.1CVSS6.6AI score0.00298EPSS
Exploits0References1
NVD
NVD
added 2023/10/04 11:15 a.m.30 views

CVE-2023-2809

Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL command...

9.8CVSS8.6AI score0.004EPSS
Exploits0References1
OSV
OSV
added 2023/10/04 11:15 a.m.2 views

CVE-2023-2809

Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL command...

9.8CVSS6AI score0.004EPSS
Exploits0References1
Prion
Prion
added 2023/10/04 11:15 a.m.20 views

Sql injection

Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL command...

7.5CVSS9.6AI score0.004EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/10/04 10:49 a.m.59 views

CVE-2023-2809

Affected software: Sage 200 Spain (Sage 200 Spain), version 2023.38.001. Vulnerability: plaintext credential usage within the DLL application, enabling a remote attacker to extract SQL database credentials. Root cause/impact: credentials stored in plaintext could lead to exposure of SQL credentia...

9.8CVSS9.2AI score0.004EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/10/04 10:49 a.m.33 views

CVE-2023-2809 Use of Cleartext credentials in Sage 200 Spain

Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL command...

7.8CVSS10AI score0.004EPSS
Exploits0References1
Rows per page
Query Builder