Primary

Context

Sage 200 Spain Pass-Back Vulnerability Allowing SMTP Credential Disclosure

Vulnerability

Patched

A pass-back vulnerability exists in Sage 200 Spain versions prior to 2025.35.000. This vulnerability allows an authenticated attacker with administrator privileges to access stored SMTP credentials.

Impact

Exploitation of this vulnerability could lead to unauthorized access to SMTP credentials, potentially allowing for email spoofing or interception.

Remediation

Users can upgrade to Sage 200 Spain version 2025.35.000 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Sage 200 Spain Pass-Back Vulnerability Allowing SMTP Credential Disclosure

Vulnerability

Impact

Remediation

Affected Products

Sage 200 Spain

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating