Headline
CVE-2023-2809: Use Cleartext Credentials Sage 200 | INCIBE-CERT
Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL commands and escalate privileges on Windows systems because the credentials are stored in plaintext.
Affected Resources
Sage 200 Spain, version 2023.38.001.
Description
INCIBE has coordinated the publication of a vulnerability that affects Sage 200 Spain, an enterprise resouce planning software (ERP), which has been discovered by Juan González of Hispasec Sistemas.
The following code has been assigned to this vulnerability:
CVE-2023-2809:
- CVSS v3.1 base score: 7.8.
- CVSS vector string: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
- Vulnerability type: CWE-798: Use of Hard-coded Credentials.
Solution
The vulnerability has been solved by Sage team in the 2023.75 version.
Detail
CVE-2023-2809: plaintext credential usage vulnerability in Sage 200 Spain, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL commands and escalate privileges on Windows systems because the credentials are stored in plaintext.