PT-2023-32532 · Salesagility · Suitecrm

Publicado

2023-11-14

Atualizado

2024-03-06

CVE-2023-6126

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SuiteCRM versions prior to 7.14.2 SuiteCRM versions prior to 7.12.14 SuiteCRM versions prior to 8.4.2

Description The issue is related to code injection in the GitHub repository salesagility/suitecrm.

Recommendations For versions prior to 7.14.2, update to version 7.14.2 or later. For versions prior to 7.12.14, update to version 7.12.14 or later. For versions prior to 8.4.2, update to version 8.4.2 or later.

Exploit

Correção

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

BIT-SUITECRM-2023-6126

CVE-2023-6126

Produtos afetados

Suitecrm

PT-2023-32532 · Salesagility · Suitecrm

CVE-2023-6126

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7