Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/04/26 5:49 a.m.15 views

CVE-2025-32789

EspoCRM is an Open Source Customer Relationship Management software. Prior to version 9.0.7, users can be sorted by their password hash. This flaw allows an attacker to make assumptions about the hash values of other users stored in the password column of the user table, based on the results of t...

3.7CVSS6.5AI score0.00366EPSS
Exploits1References1
Circl
Circl
added 2025/04/16 10:44 p.m.7 views

CVE-2025-32789

creationtimestamp| type| source ---|---|--- 2025-04-16 22:44:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmxo5ctc2i24...

3.7CVSS6.9AI score0.00366EPSS
Exploits1References1
NVD
NVD
added 2025/04/16 10:15 p.m.16 views

CVE-2025-32789

EspoCRM is an Open Source Customer Relationship Management software. Prior to version 9.0.7, users can be sorted by their password hash. This flaw allows an attacker to make assumptions about the hash values of other users stored in the password column of the user table, based on the results of t...

3.7CVSS0.00366EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/04/16 9:45 p.m.39 views

CVE-2025-32789 EspoCRM Allows Potential Disclosure of Sensitive Information in the User Sorting Function

EspoCRM is an Open Source Customer Relationship Management software. Prior to version 9.0.7, users can be sorted by their password hash. This flaw allows an attacker to make assumptions about the hash values of other users stored in the password column of the user table, based on the results of t...

3.1CVSS0.00366EPSS
Exploits1References3
Rows per page
Query Builder