216.73.217.139

CVE-2025-1887

· Published 07/03/2025 11:15 · Modified 07/03/2025 11:15

Labels: CVE-2025-1887 2025-03-07CVE-2025-1887CWE-294[email protected]

Essential information

Published
07/03/2025 11:15
Modified
07/03/2025 11:15
Author
Creator
CISA KEV
No
CWE

Description

SMB forced authentication vulnerability in versions prior to 2025.35.000 of Sage 200 Spain. This vulnerability allows an authenticated attacker with administrator privileges to obtain NTLMv2-SSP Hash by changing any of the paths to a UNC path pointing to a server controlled by the attacker.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

References