2020-7388 | Sage X3 AdxDSrv.exe authentication spoofing
|CVSS Meta Temp Score
CVSS is a standardized scoring system to determine possibilities of attacks. The Temp Score considers temporal factors like disclosure, exploit and countermeasures. The unique Meta Score calculates the average score of different sources to provide a normalized scoring system.
|Current Exploit Price (≈)
Our analysts are monitoring exploit markets and are in contact with vulnerability brokers. The range indicates the observed or calculated exploit price to be seen on exploit markets. A good indicator to understand the monetary effort required for and the popularity of an attack.
|CTI Interest Score
Our Cyber Threat Intelligence team is monitoring different web sites, mailing lists, exploit markets and social media networks. The CTI Interest Score identifies the interest of attackers and the security community for this specific vulnerability in real-time. A high score indicates an elevated risk to be targeted for this vulnerability.
A vulnerability was found in Sage X3 (the affected version is unknown). It has been declared as critical. This vulnerability affects some unknown processing of the file AdxDSrv.exe. The manipulation with an unknown input leads to a weak authentication vulnerability. The CWE definition for the vulnerability is CWE-290. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:
Sage X3 Unauthenticated Remote Command Execution (RCE) as SYSTEM in AdxDSrv.exe component. By editing the client side authentication request, an attacker can bypass credential validation. While exploiting this does require knowledge of the installation path, that information can be learned by exploiting CVE-2020-7387. This issue was fixed in AdxAdmin 93.2.53, which ships with updates for on-premises versions of Sage X3 including Version 9 (components shipped with Syracuse 188.8.131.52 and later), Sage X3 HR & Payroll Version 9 (those components that ship with Syracuse 184.108.40.206), Version 11 (components shipped with Syracuse 220.127.116.11 and later), and Version 12 (components shipped with Syracuse 18.104.22.168 and later) of Sage X3. Other on-premises versions of Sage X3 are unsupported by the vendor.
The weakness was presented 07/23/2021. The advisory is available at sagecity.com. This vulnerability was named CVE-2020-7388 since 01/21/2020. The exploitation appears to be easy. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. Technical details are known, but there is no available exploit.
Upgrading eliminates this vulnerability. The upgrade is hosted for download at sagecity.com.
VulDB Meta Base Score: 7.3
VulDB Meta Temp Score: 7.0
VulDB Base Score: 7.3
VulDB Temp Score: 7.0
VulDB Vector: 🔒
VulDB Reliability: 🔍
VulDB Base Score: 🔒
VulDB Temp Score: 🔒
VulDB Reliability: 🔍
Class: Weak authentication
Status: Not defined
Price Prediction: 🔍
Current Price Estimation: 🔒
Active Actors: 🔍
Active APT Groups: 🔍Recommended: Upgrade
0-Day Time: 🔒
01/21/2020 CVE assigned
07/23/2021 +548 days Advisory disclosed
07/23/2021 +0 days VulDB entry created
07/27/2021 +4 days VulDB last updateAdvisory: sagecity.com
CVE: CVE-2020-7388 (🔒)
Created: 07/23/2021 07:47
Updated: 07/27/2021 13:39
Changes: (1) source_cve_cna
Use the official API to access entries easily!