Vulnerabilities > CVE-2024-45392 - Unspecified vulnerability in Salesagility Suitecrm

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
salesagility
NVD
Published: 2024-09-05
Updated: 2024-09-06

Summary

SuiteCRM is an open-source customer relationship management (CRM) system. Prior to version 7.14.5 and 8.6.2, insufficient access control checks allow a threat actor to delete records via the API. Versions 7.14.5 and 8.6.2 contain a patch for the issue.

Vulnerable Configurations

Part Description Count
Application
Salesagility
237

References