{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2025-67807", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-01T19:19:19.721Z", "dateReserved": "2025-12-12T00:00:00.000Z", "datePublished": "2026-04-01T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-01T15:10:55.249Z"}, "descriptions": [{"lang": "en", "value": "The login mechanism of Sage DPW 2025_06_004 displays distinct responses for valid and invalid usernames, allowing enumeration of existing accounts in versions before 2021_06_000. On-premise administrators can toggle this behaviour in newer versions."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://www.sagedpw.at/"}, {"url": "https://pastebin.com/Tk4LgMG2"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-204", "lang": "en", "description": "CWE-204 Observable Response Discrepancy"}]}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-01T19:17:49.822811Z", "id": "CVE-2025-67807", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T19:19:19.721Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2025-67807", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-01T19:17:49.822811Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-204", "description": "CWE-204 Observable Response Discrepancy"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-01T19:16:15.937Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://www.sagedpw.at/"}, {"url": "https://pastebin.com/Tk4LgMG2"}], "descriptions": [{"lang": "en", "value": "The login mechanism of Sage DPW 2025_06_004 displays distinct responses for valid and invalid usernames, allowing enumeration of existing accounts in versions before 2021_06_000. On-premise administrators can toggle this behaviour in newer versions."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-01T15:10:55.249Z"}}}, "cveMetadata": {"cveId": "CVE-2025-67807", "state": "PUBLISHED", "dateUpdated": "2026-04-01T19:19:19.721Z", "dateReserved": "2025-12-12T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-01T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sagedpw:sage_dpw:2025_06_004:*:*:*:*:*:*:*", "matchCriteriaId": "633B447B-E044-4548-9D21-E82129683125", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The login mechanism of Sage DPW 2025_06_004 displays distinct responses for valid and invalid usernames, allowing enumeration of existing accounts in versions before 2021_06_000. On-premise administrators can toggle this behaviour in newer versions."}], "id": "CVE-2025-67807", "lastModified": "2026-04-07T19:22:34.767", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 2.7, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-04-01T16:23:48.470", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://pastebin.com/Tk4LgMG2"}, {"source": "cve@mitre.org", "tags": ["Product"], "url": "https://www.sagedpw.at/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-204"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,2021_06_000)"}}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "dpw", "vendor": "sage"}], "analysis": {"en": {"generated_at": "2026-04-07T21:31:00.234128+00:00", "value": {"mitigation_remediation": ["Enable the account enumeration suppression setting in the Sage DPW configuration for installations on or before version 2021_06_000", "Upgrade to Sage DPW 2021_06_000 or later and verify the enumeration toggle is disabled", "If operating a newer version, confirm the enumeration suppression feature is active via the administration console", "Monitor login attempt logs for suspicious patterns and enforce rate limiting or account lockout policies"], "summary": {"action": "Mitigate", "impact": "Account Enumeration via Login Response Discrimination"}, "threat_synthesis": {"affected_systems": "Sage DPW versions prior to 2021_06_000 are affected, including the 2025_06_004 release used by on\u2011premise environments. On\u2011premise administrators have the ability to toggle this behavior in newer releases, thus mitigating the issue for current deployments.", "description_and_impact": "This vulnerability enables an attacker to determine whether a username exists in the system by analyzing the difference in responses returned by the login mechanism. The distinct responses for valid versus invalid usernames expose a privacy compromise and can be leveraged to gather a list of valid accounts. The weakness is categorized under CWE-204: Information Exposure Through Unintended Data Disclosure.", "risk_and_exploitability": "The CVSS score of 4.7 indicates moderate severity, with an EPSS scoring below 1\u202f% and no listing in the CISA KEV catalog. The likely attack vector is a network\u2011based login attempt to the Sage DPW authentication endpoint. While successful enumeration does not directly grant credential compromise, it facilitates targeted credential stuffing or phishing attacks, thereby increasing the overall threat to confidentiality and potentially enabling further exploitation once credentials are obtained."}}}}, "created": "2026-04-02T07:51:29.380901+00:00", "updated": "2026-04-08T20:00:01.993079+00:00", "vendors": ["sage", "sage$PRODUCT$dpw"]}