HIGHπŸ‡΅πŸ‡± Wersja polska

CVE-2024-36416

CVSS 8.6v3.1pub. 2024-06-10upd. 2024-11-21

SuiteCRM is an open-source Customer Relationship Management (CRM) software application. Prior to versions 7.14.4 and 8.6.1, a deprecated v4 API example with no log rotation allows denial of service by logging excessive data. Versions 7.14.4 and 8.6.1 contain a fix for this issue.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Salesagility Suitecrm

    APP
    Salesagility
    < 7.14.48.0.0 – 8.6.1 (bez)
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2022-50589CRITICAL9.3PL βœ“ten sam produkt

SQL Injection w SuiteCRM umoΕΌliwiajΔ…ce zdalne wykonanie kodu (RCE)

CVE-2024-36408CRITICAL9.6PL βœ“ten sam produkt

SQL Injection w kontrolerze Alerts aplikacji SuiteCRM

CVE-2024-36410CRITICAL9.6PL βœ“ten sam produkt

SQL Injection w SuiteCRM β€” kontroler EmailUIAjax messages count

CVE-2024-36409CRITICAL9.6PL βœ“ten sam produkt

SQL Injection w SuiteCRM β€” punkt wejΕ›cia danych drzewa

CVE-2024-36411CRITICAL9.6PL βœ“ten sam produkt

SQL Injection w SuiteCRM β€” kontroler EmailUIAjax displayView

CVE-2024-36416 β€” Salesagility β€” Suitecrm β€” HIGH β€” CVSS 8.6 | CVEbaza.pl