Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SMB forced authentication vulnerability in Sage 200 Spain
Vulnerability Description
SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to obtain NTLMv2-SSP Hash by changing any of the paths to a UNC path pointing to a server controlled by the attacker.
CVSS Information
N/A
Vulnerability Type
使用捕获-重放进行的认证绕过
Vulnerability Title
Sage 200 Spain 安全漏洞
Vulnerability Description
Sage 200 Spain是Sage公司的一款商业管理软件。 Sage 200 Spain 2025.35.000之前版本存在安全漏洞,该漏洞源于SMB强制认证漏洞,可能导致管理员特权用户通过更改路径获取NTLMv2-SSP哈希。
CVSS Information
N/A
Vulnerability Type
N/A