Lucene search

K
cvelistMitreCVELIST:CVE-2021-41597
HistoryJan 12, 2022 - 7:17 p.m.

CVE-2021-41597

2022-01-1219:17:05
mitre
www.cve.org
5
suitecrm 7.11.21
csrf
remote code execution
upgradewizard
zip archive
php file

AI Score

9.1

Confidence

High

EPSS

0.006

Percentile

79.1%

SuiteCRM through 7.11.21 is vulnerable to CSRF, with resultant remote code execution, via the UpgradeWizard functionality, if a PHP file is included in a ZIP archive.

AI Score

9.1

Confidence

High

EPSS

0.006

Percentile

79.1%

Related for CVELIST:CVE-2021-41597