CVE-2022-41397 Information

Description

The optional Web Screens and Global Search features for Sage 300 through version 2022 use a hard-coded 40-byte blowfish key (\LandlordPassKey) to encrypt and decrypt secrets stored in configuration files and in database tables.

Reference

https://www.sage.com/en-ca/products/sage-300/