{"id":41715,"date":"2021-07-07T23:56:07","date_gmt":"2021-07-07T23:56:07","guid":{"rendered":"https:\/\/www.threatshub.org\/blog\/youve-patched-that-critical-sage-x3-erp-security-hole-yeah-not-exposing-the-suite-to-the-internet-either-yeah\/"},"modified":"2021-07-07T23:56:07","modified_gmt":"2021-07-07T23:56:07","slug":"youve-patched-that-critical-sage-x3-erp-security-hole-yeah-not-exposing-the-suite-to-the-internet-either-yeah","status":"publish","type":"post","link":"https:\/\/www.threatshub.org\/blog\/youve-patched-that-critical-sage-x3-erp-security-hole-yeah-not-exposing-the-suite-to-the-internet-either-yeah\/","title":{"rendered":"You’ve patched that critical Sage X3 ERP security hole, yeah? Not exposing the suite to the internet, either, yeah?"},"content":{"rendered":"

Admins of on-premises Sage X3 ERP deployments should check they’re not exposing the enterprise resource planning suite to the public internet in case they fall victim to an unauthenticated command execution vulnerability.<\/p>\n

And said administrators should have installed by now the latest patches for the software, which address a bunch of bugs earlier discovered<\/a> and reported by Rapid7. The infosec outfit described in detail the flaws, calling them “protocol-related issues involving remote administration of Sage X3.”<\/p>\n

The aforementioned command execution vulnerability (CVE-2020-7388) scores a perfect ten out of ten in CVSS severity. Hence, protect and patch: miscreants have everything they need now to exploit the bugs.<\/p>\n

We’re told CVE-2020-7388 can be exploited to trick Sage X3 into executing as NT AUTHORITY\/SYSTEM commands in specially crafted requests sent to an administrative service exposed through TCP port 1818. The other vulns found by Rapid7 are rated at four or five on the CVSS scoring scale:<\/p>\n