Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Sage 300 through 2022 uses a hard-coded 40-byte blowfish key to encrypt and decrypt user passwords and SQL connection strings stored in ISAM database files in the shared data directory. This issue could allow attackers to decrypt user passwords and SQL connection strings.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sage Group Sage 300 信任管理问题漏洞
Vulnerability Description
Sage Group Sage 300是英国Sage Group公司的一个完善的闭源企业资源规划 (ERP) 解决方案,旨在促进企业管理。 Sage Group Sage 300 2022版本及之前版本存在安全漏洞,该漏洞源于使用硬编码河豚密钥来加密和解密共享数据目录中 ISAM 数据库文件中存储的用户密码和 SQL 连接字符串。
CVSS Information
N/A
Vulnerability Type
N/A