Use of Cleartext credentials in Sage 200 Spain

Posted date 04/07/2023
Importance
4 - High
Affected Resources

Sage 200 Spain, version 2023.38.001.

Description

INCIBE has coordinated the publication of a vulnerability that affects Sage 200 Spain, an enterprise resouce planning software (ERP), which has been discovered by Juan González of Hispasec Sistemas.

The following code has been assigned to this vulnerability:

CVE-2023-2809:

  • CVSS v3.1 base score: 7.8.
  • CVSS vector string: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
  • Vulnerability type: CWE-312 Cleartext Storage of Sensitive Information.
Solution

The vulnerability has been solved by Sage team in the 2023.75 version.

Detail

CVE-2023-2809: plaintext credential usage vulnerability in Sage 200 Spain, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL commands and escalate privileges on Windows systems because the credentials are stored in plaintext.