A security has been reported and relates to two generic users (ADMCA or ECOMM) that have been supplied by default when installing Sage X3 Version 11 and Sage X3 Version 12 before release 2019 R2. It has been observed in instances where Sage X3 Security Best Practices have not been followed, that there might be an access path to administration functions on production sites by an elevation of privilege.

This impacts Sage X3 Version 11 and Sage X3 Version 12 before release 2019 R2  (even if the customer has subsequently upgraded to a more recent release).

Please read the FAQ and the documentation that can be found on our ftp site \\Public\Sage X3\X3 Addons\Security checking and fixing tool\  before applying the security hotfix.