The optional Global Search feature for Sage 300 through version 2022 uses a set of hard-coded credentials for the accompanying Apache Solr instance. This issue could allow attackers to login to the Solr dashboard with admin privileges and access sensitive information.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-04-28T00:00:00

Updated: 2024-08-03T12:42:46.266Z

Reserved: 2022-09-26T00:00:00

Link: CVE-2022-41398

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-04-28T13:15:13.460

Modified: 2024-11-21T07:23:09.297

Link: CVE-2022-41398

cve-icon Redhat

No data.