Lucene search

CVE-2024-36412 SuiteCRM unauthenticated SQL Injection

🗓️ 10 Jun 2024 19:43:35Reported by GitHub_MType

CVE-2024-36412 SuiteCRM unauthenticated SQL Injection vulnerability in events response entry poin

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
OSV	BIT-SUITECRM-2024-36412	12 Jun 202407:38	–	osv
OSV	CVE-2024-36412	10 Jun 202420:15	–	osv
Nuclei	SuiteCRM - SQL Injection	11 Jun 202414:58	–	nuclei
NVD	CVE-2024-36412	10 Jun 202420:15	–	nvd
Vulnrichment	CVE-2024-36412 SuiteCRM unauthenticated SQL Injection	10 Jun 202419:35	–	vulnrichment
CVE	CVE-2024-36412	10 Jun 202420:15	–	cve

[
  {
    "vendor": "salesagility",
    "product": "SuiteCRM",
    "versions": [
      {
        "version": "< 7.14.4",
        "status": "affected"
      },
      {
        "version": ">= 8.0.0, < 8.6.1",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/salesagility/SuiteCRM/security/advisories/GHSA-xjx2-38hv-5hh8

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jun 2024 19:35Current

CVSS310

EPSS0.93471

CWE-89

suitecrm customer relationship management software sql injection 7.14.4 8.6.1 cve-2024-36412