CVE-2026-29189 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, the SuiteCRM REST…
High CVSS: 8.1

CVE-2026-29189

SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. Prior to versions 7.15.1 and 8.9.3, the SuiteCRM REST API V8 has missing ACL (Access Control List) checks on several endpoints, allowing authenticated users to access and manipulate data they should not have permission to interact with. Versions 7.15.1 and 8.9.3 patch the issue.
Vendor
Suitecrm
Product
Suitecrm
CWE
CWE-639
Yayın Tarihi
2026-03-20 00:16:16
Güncelleme
2026-03-23 16:46:51
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-639 Suitecrm HIGH Suitecrm 2026

Referanslar

https://docs.suitecrm.com/admin/releases/7.15.x https://github.com/SuiteCRM/SuiteCRM/security/advisories/GHSA-m6x8-3hxp-qxwv