Comarch Erp Optima
2 CVEs affecting Comarch Erp Optima. Latest disclosed: 2026-05-14. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-68421 | | 2026-05-14 | Comarch ERP Optima client makes use of a hard-coded password for a database user. These credentials cannot be changed. It is possible for a remote attacker to… | |
CVE-2025-68420 | | 2026-05-14 | Comarch ERP Optima client connects to a database using a high privileged account regardless of an application account to which a user logs in. It is possible f… |