Description
Comarch ERP Optima client makes use of a hard-coded password for a database user. These credentials cannot be changed. It is possible for a remote attacker to gain an access to the database with elevated privileges including executing system commands on a server.
This issue has been fixed in version 2026.4
Published: 2026-05-14
Score: 8.7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A hard‑coded database user password is embedded in the Comarch ERP Optima client. The password cannot be changed, and the credentials provide elevated database privileges that allow arbitrary execution of system commands on the host. This flaw enables a remote attacker to compromise the confidentiality, integrity, and availability of the database and underlying server.

Affected Systems

All installations of Comarch ERP Optima prior to version 2026.4 are vulnerable. The fix was released in version 2026.4 and later releases are not affected.

Risk and Exploitability

The issue carries a CVSS score of 8.7, indicating high severity. No EPSS score is available and the vulnerability is not listed in the CISA KEV catalog. The likelihood of exploitation depends on the attacker’s ability to reach the application; the hard‑coded credentials eliminate password management mitigation, making exploitation technically straightforward once the application is accessed.

Generated by OpenCVE AI on May 14, 2026 at 11:21 UTC.

Remediation

Vendor Workaround

Since these accounts are used for backward compatibility only, in some cases it is possible to disable them in the SQL server.

OpenCVE Recommended Actions

  • Apply the vendor‑supplied patch to reach version 2026.4 or later
  • If the patch cannot be applied immediately, disable the backward‑compatibility database accounts in the SQL server as a temporary workaround
  • After disabling accounts, monitor database and system logs for anomalous activity and enforce stricter database access controls

Generated by OpenCVE AI on May 14, 2026 at 11:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 14 May 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Thu, 14 May 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Comarch
Comarch erp Optima
Vendors & Products Comarch
Comarch erp Optima

Thu, 14 May 2026 10:45:00 +0000

Type Values Removed Values Added
Description Comarch ERP Optima client makes use of a hard-coded password for a database user. These credentials cannot be changed. It is possible for a remote attacker to gain an access to the database with elevated privileges including executing system commands on a server. This issue has been fixed in version 2026.4
Title Hardcoded credentials in Comarch ERP Optima
Weaknesses CWE-798
References
Metrics cvssV4_0

{'score': 8.7, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N'}

Subscriptions

Comarch Erp Optima
cve-icon MITRE

Status: PUBLISHED

Assigner: CERT-PL

Published:

Updated: 2026-05-14T17:55:30.537Z

Reserved: 2025-12-17T14:10:16.437Z

Link: CVE-2025-68421

cve-icon Vulnrichment

Updated: 2026-05-14T17:55:25.788Z

cve-icon NVD

Status : Deferred

Published: 2026-05-14T11:16:17.240

Modified: 2026-05-14T16:07:11.137

Link: CVE-2025-68421

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-14T14:32:46Z

Weaknesses