Comarch Erp Xl

3 CVEs affecting Comarch Erp Xl. Latest disclosed: 2024-02-15. Critical: 0, High: 2.

Top CVEs affecting Comarch Erp Xl
CVESeverityScorePublishedSummary
CVE-2023-4539High7.52024-02-15Use of a hard-coded password for a special database account created during Comarch ERP XL installation allows an attacker to retrieve embedded sensitive data s…
CVE-2023-4537High7.42024-02-15Comarch ERP XL client is vulnerable to MS SQL protocol downgrade request from a server side, what could lead to an unencrypted communication vulnerable to data…
CVE-2023-4538Medium6.22024-02-15The database access credentials configured during installation are stored in a special table, and are encrypted with a shared key, same among all Comarch ERP X…