5 matches found
CVE-2023-32075
The Customer Management Framework CMF for Pimcore adds functionality for customer data management. In pimcore/customer-management-framework-bundle prior to version 3.3.9, business logic errors are possible in the Conditions tab since the counter can be a negative number. This vulnerability is...
CVE-2023-32075
creationtimestamp| type| source ---|---|--- 2023-05-11 20:15:28+00:00| seen| https://t.me/cibsecurity/63901 2025-01-24 17:05:04+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2948 2025-07-27 00:24:50+00:00| seen| Telegram/QDu2QWaIhtz37JEN6ncU5C4XlWr7PqL5o17PPbTBbF84UB...
CVE-2023-32075 Pimcore vulnerable to Business Logic Errors in Customer automation rules
The Customer Management Framework CMF for Pimcore adds functionality for customer data management. In pimcore/customer-management-framework-bundle prior to version 3.3.9, business logic errors are possible in the Conditions tab since the counter can be a negative number. This vulnerability is...
CVE-2023-32075 Pimcore vulnerable to Business Logic Errors in Customer automation rules
The Customer Management Framework CMF for Pimcore adds functionality for customer data management. In pimcore/customer-management-framework-bundle prior to version 3.3.9, business logic errors are possible in the Conditions tab since the counter can be a negative number. This vulnerability is...
CVE-2023-32075
Summary of CVE-2023-32075: The Pimcore CMF’s customer-management-framework-bundle is affected in versions before 3.3.9. A business-logic flaw in the Conditions tab allows the counter value to become negative, leading to unlogic in the UI/logic. The issue is fixed in version 3.3.9; patch guidance ...