CVE-2023-2809 — HIGH (7.8) — White Hats Nepal

Vulnerability Description

Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. This vulnerability could be linked to known techniques to obtain remote execution of MS SQL commands and escalate privileges on Windows systems because the credentials are stored in plaintext.

CVSS Score

7.8

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Sage	Sage 200 Spain	2023.38.001

Related Weaknesses (CWE)

CWE-312

References

https://www.incibe.es/en/incibe-cert/notices/aviso/use-cleartext-credentials-sagThird Party Advisory
https://www.incibe.es/en/incibe-cert/notices/aviso/use-cleartext-credentials-sagThird Party Advisory

FAQ

What is CVE-2023-2809?

CVE-2023-2809 is a vulnerability with a CVSS score of 7.8 (HIGH). Plaintext credential usage vulnerability in Sage 200 Spain 2023.38.001 version, the exploitation of which could allow a remote attacker to extract SQL database credentials from the DLL application. Th...

How severe is CVE-2023-2809?

CVE-2023-2809 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-2809?

Check the references section above for vendor advisories and patch information. Affected products include: Sage Sage 200 Spain.