CNNVD-202508-641 Information
Aug 07, 2025
cve
CNNVD ID
CNNVD-202508-641
Related CVE
- CNNVD Published: 2025-08-07
Description (Chinese)
SuiteCRM是SuiteCRM团队的一个客户关系管理系统。 SuiteCRM 7.14.6和8.8.0版本存在输入验证错误漏洞,该漏洞源于未验证用户输入即传递给反序列化函数,可能导致多种攻击。
Description (English)
SuiteCRM is a customer relationship management system for the SuiteCRM team. Versions 7.14.6 and 8.8.0 of the SuiteCRM contain input verification error holes, which stem from the transmission of unverified user input to the anti-serialization function, which may lead to multiple attacks.
Hazard Level
Medium
Vulnerability Type
输入验证错误
Affected Vendor
SuiteCRM
Published
2025-08-07
Last Modified
2026-02-24
References
https://docs.suitecrm.com/admin/releases/7.14.x/#_7_14_7 https://github.com/SuiteCRM/SuiteCRM/security/advisories/GHSA-53cp-mpfw-qj67
Patch
https://github.com/SuiteCRM/SuiteCRM-Core/releases
Share on: