Known Vulnerabilities for X3 by Sage
Listed below are 6 of the newest known vulnerabilities associated with "X3" by "Sage".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-31868 json | Sage X3 version 12.14.0.50-0 is vulnerable to Cross Site Scripting (XSS). Some parts of the Web application are dynamically b... | 5.4 - MEDIUM | 2023-06-22 | 2023-06-28 |
| CVE-2023-31867 json | Sage X3 version 12.14.0.50-0 is vulnerable to CSV Injection. | 7.2 - HIGH | 2023-06-22 | 2023-06-28 |
| CVE-2020-7390 json | Sage X3 Stored XSS Vulnerability on ‘Edit’ Page of User Profile. An authenticated user can pass XSS strings the "First Na... | 5.4 - MEDIUM | 2021-07-22 | 2023-11-07 |
| CVE-2020-7389 json | Sage X3 System CHAINE Variable Script Command Injection. An authenticated user with developer access can pass OS commands via... | 7.2 - HIGH | 2021-07-22 | 2022-07-15 |
| CVE-2020-7388 json | Sage X3 Unauthenticated Remote Command Execution (RCE) as SYSTEM in AdxDSrv.exe component. By editing the client side authent... | 9.8 - CRITICAL | 2021-07-22 | 2021-08-09 |
| CVE-2020-7387 json | Sage X3 Installation Pathname Disclosure. A specially crafted packet can elicit a response from the AdxDSrv.exe component tha... | 5.3 - MEDIUM | 2021-07-22 | 2021-08-09 |