SuiteCRM is an open-source Customer Relationship Management (CRM) software application. Prior to versions 7.14.4 and 8.6.1, a deprecated v4 API example with no log rotation allows denial of service by logging excessive data. Versions 7.14.4 and 8.6.1 contain a fix for this issue.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HSalesagility Suitecrm
APPSalesagility< 7.14.48.0.0 β 8.6.1 (bez)
π΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
Related vulnerabilities
CVE-2022-50589CRITICAL9.3PL βten sam produkt
SQL Injection w SuiteCRM umoΕΌliwiajΔ ce zdalne wykonanie kodu (RCE)
CVE-2024-36408CRITICAL9.6PL βten sam produkt
SQL Injection w kontrolerze Alerts aplikacji SuiteCRM
CVE-2024-36410CRITICAL9.6PL βten sam produkt
SQL Injection w SuiteCRM β kontroler EmailUIAjax messages count
CVE-2024-36409CRITICAL9.6PL βten sam produkt
SQL Injection w SuiteCRM β punkt wejΕcia danych drzewa
CVE-2024-36411CRITICAL9.6PL βten sam produkt
SQL Injection w SuiteCRM β kontroler EmailUIAjax displayView