Use of Cleartext credentials in Sage 200 Spain
Sage 200 Spain, version 2023.38.001.
INCIBE has coordinated the publication of a vulnerability that affects Sage 200 Spain, an enterprise resouce planning software (ERP), which has been discovered by Juan González of Hispasec Sistemas.
The following code has been assigned to this vulnerability:
CVE-2023-2809:
- CVSS v3.1 base score: 7.8.
- CVSS vector string: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
- Vulnerability type: CWE-312 Cleartext Storage of Sensitive Information.
The vulnerability has been solved by Sage team in the 2023.75 version.
CVE-2023-2809: plaintext credential usage vulnerability in Sage 200 Spain, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL commands and escalate privileges on Windows systems because the credentials are stored in plaintext.
