Vulnerabilities > CVE-2020-8801 - Deserialization of Untrusted Data vulnerability in Salesagility Suitecrm

CVSS 7.2 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

salesagility

CWE-502

NVD

Published: 2020-02-13

Updated: 2021-07-21

Summary

SuiteCRM through 7.11.11 allows PHAR Deserialization.

Vulnerable Configurations

Part	Description	Count
Application	Salesagility Salesagility Suitecrm 7.0.0 Salesagility Suitecrm 7.0.1 Salesagility Suitecrm 7.0.2 Salesagility Suitecrm 7.1.0 Salesagility Suitecrm 7.1.1 Salesagility Suitecrm 7.1.2 Salesagility Suitecrm 7.1.3 Salesagility Suitecrm 7.1.4 Salesagility Suitecrm 7.1.5 Salesagility Suitecrm 7.1.6 Salesagility Suitecrm 7.1.7 Salesagility Suitecrm 7.1.8 Salesagility Suitecrm 7.2.0 Salesagility Suitecrm 7.2.1 Salesagility Suitecrm 7.2.2 Salesagility Suitecrm 7.2.3 Salesagility Suitecrm 7.2.4 Salesagility Suitecrm 7.3.0 Salesagility Suitecrm 7.3.1 Salesagility Suitecrm 7.3.2 Salesagility Suitecrm 7.4.0 Salesagility Suitecrm 7.4.1 Salesagility Suitecrm 7.4.2 Salesagility Suitecrm 7.4.3 Salesagility Suitecrm 7.5.0 Salesagility Suitecrm 7.5.1 Salesagility Suitecrm 7.5.2 Salesagility Suitecrm 7.5.3 Salesagility Suitecrm 7.5.4 Salesagility Suitecrm 7.5.5 Salesagility Suitecrm 7.6.0 Salesagility Suitecrm 7.6.1 Salesagility Suitecrm 7.6.2 Salesagility Suitecrm 7.6.3 Salesagility Suitecrm 7.6.4 Salesagility Suitecrm 7.6.5 Salesagility Suitecrm 7.6.6 Salesagility Suitecrm 7.6.7 Salesagility Suitecrm 7.6.8 Salesagility Suitecrm 7.6.9 Salesagility Suitecrm 7.6.10 Salesagility Suitecrm 7.7.0 Salesagility Suitecrm 7.7.1 Salesagility Suitecrm 7.7.2 Salesagility Suitecrm 7.7.3 Salesagility Suitecrm 7.7.4 Salesagility Suitecrm 7.7.5 Salesagility Suitecrm 7.7.6 Salesagility Suitecrm 7.7.7 Salesagility Suitecrm 7.7.8 Salesagility Suitecrm 7.7.9 Salesagility Suitecrm 7.8.0 Salesagility Suitecrm 7.8.1 Salesagility Suitecrm 7.8.2 Salesagility Suitecrm 7.8.3 Salesagility Suitecrm 7.8.4 Salesagility Suitecrm 7.8.5 Salesagility Suitecrm 7.8.6 Salesagility Suitecrm 7.8.7 Salesagility Suitecrm 7.8.8 Salesagility Suitecrm 7.8.9 Salesagility Suitecrm 7.8.10 Salesagility Suitecrm 7.8.11 Salesagility Suitecrm 7.8.12 Salesagility Suitecrm 7.8.13 Salesagility Suitecrm 7.8.14 Salesagility Suitecrm 7.8.15 Salesagility Suitecrm 7.8.16 Salesagility Suitecrm 7.8.17 Salesagility Suitecrm 7.8.18 Salesagility Suitecrm 7.8.19 Salesagility Suitecrm 7.8.20 Salesagility Suitecrm 7.8.21 Salesagility Suitecrm 7.8.22 Salesagility Suitecrm 7.8.23 Salesagility Suitecrm 7.8.24 Salesagility Suitecrm 7.8.25 Salesagility Suitecrm 7.8.26 Salesagility Suitecrm 7.8.27 Salesagility Suitecrm 7.8.28 Salesagility Suitecrm 7.8.29 Salesagility Suitecrm 7.8.30 Salesagility Suitecrm 7.8.31 Salesagility Suitecrm 7.9.0 Salesagility Suitecrm 7.9.1 Salesagility Suitecrm 7.9.2 Salesagility Suitecrm 7.9.3 Salesagility Suitecrm 7.9.4 Salesagility Suitecrm 7.9.5 Salesagility Suitecrm 7.9.6 Salesagility Suitecrm 7.9.7 Salesagility Suitecrm 7.9.8 Salesagility Suitecrm 7.9.9 Salesagility Suitecrm 7.9.10 Salesagility Suitecrm 7.9.11 Salesagility Suitecrm 7.9.12 Salesagility Suitecrm 7.9.13 Salesagility Suitecrm 7.9.14 Salesagility Suitecrm 7.9.15 Salesagility Suitecrm 7.9.16 Salesagility Suitecrm 7.9.17 Salesagility Suitecrm 7.10.0 Salesagility Suitecrm 7.10.1 Salesagility Suitecrm 7.10.2 Salesagility Suitecrm 7.10.3 Salesagility Suitecrm 7.10.4 Salesagility Suitecrm 7.10.5 Salesagility Suitecrm 7.10.6 Salesagility Suitecrm 7.10.7 Salesagility Suitecrm 7.10.8 Salesagility Suitecrm 7.10.9 Salesagility Suitecrm 7.10.10 Salesagility Suitecrm 7.10.11 Salesagility Suitecrm 7.10.12 Salesagility Suitecrm 7.10.13 Salesagility Suitecrm 7.10.14 Salesagility Suitecrm 7.10.15 Salesagility Suitecrm 7.10.16 Salesagility Suitecrm 7.10.17 Salesagility Suitecrm 7.10.18 Salesagility Suitecrm 7.10.19 Salesagility Suitecrm 7.10.20 Salesagility Suitecrm 7.10.21 Salesagility Suitecrm 7.10.23 Salesagility Suitecrm 7.10.24 Salesagility Suitecrm 7.10.25 Salesagility Suitecrm 7.10.26 Salesagility Suitecrm 7.10.27 Salesagility Suitecrm 7.10.28 Salesagility Suitecrm 7.10.29 Salesagility Suitecrm 7.10.30 Salesagility Suitecrm 7.10.31 Salesagility Suitecrm 7.10.32 Salesagility Suitecrm 7.10.33 Salesagility Suitecrm 7.10.34 Salesagility Suitecrm 7.10.35 Salesagility Suitecrm 7.11.0 Salesagility Suitecrm 7.11.1 Salesagility Suitecrm 7.11.2 Salesagility Suitecrm 7.11.3 Salesagility Suitecrm 7.11.4 Salesagility Suitecrm 7.11.5 Salesagility Suitecrm 7.11.6 Salesagility Suitecrm 7.11.7 Salesagility Suitecrm 7.11.8 Salesagility Suitecrm 7.11.9 Salesagility Suitecrm 7.11.10 Salesagility Suitecrm 7.11.11	181

Common Weakness Enumeration (CWE)

CWE-502 - Deserialization of Untrusted Data

Packetstorm

data source	https://packetstormsecurity.com/files/download/156324/KIS-2020-02.txt
id	PACKETSTORM:156324
last seen	2020-02-13
published	2020-02-13
reporter	EgiX
source	https://packetstormsecurity.com/files/156324/SuiteCRM-7.11.11-Phar-Deserialization.html
title	SuiteCRM 7.11.11 Phar Deserialization

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Packetstorm

References