VYPR
Unrated severityNVD Advisory· Published Feb 15, 2024· Updated Oct 10, 2024

Protocol Downgrade in Comarch ERP XL

CVE-2023-4537

Description

Comarch ERP XL client is vulnerable to MS SQL protocol downgrade request from a server side, what could lead to an unencrypted communication vulnerable to data interception and modification.

This issue affects ERP XL: from 2020.2.2 through 2023.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Comarch/ERP XLllm-create2 versions
    >=2020.2.2, <=2023.2+ 1 more
    • (no CPE)range: >=2020.2.2, <=2023.2
    • (no CPE)range: 2020.2.2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.