CVE-2025-54785 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. In versions 7.14.6 and 8.8.0, user-supplied input is…
High CVSS: 8.8

CVE-2025-54785

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. In versions 7.14.6 and 8.8.0, user-supplied input is not validated/sanitized before it is passed to the unserialize function, which could lead to penetration, privilege escalation, sensitive data exposure, Denial of Service, cryptomining and ransomware. This issue is fixed in version 7.14.7 and 8.8.1.
Vendor
Salesagility
Product
Suitecrm
CWE
CWE-20
Yayın Tarihi
2025-08-07 00:15:31
Güncelleme
2025-08-13 18:12:57
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-20 Suitecrm HIGH Salesagility 2025

Referanslar

https://docs.suitecrm.com/admin/releases/7.14.x/#_7_14_7 https://github.com/SuiteCRM/SuiteCRM/security/advisories/GHSA-53cp-mpfw-qj67