8.8

CVE-2022-23940

Exploit

EPSS 35.87%
Veröffentlicht 10.03.2022 17:45:56
Zuletzt bearbeitet 21.11.2024 06:49:29
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

SuiteCRM through 7.12.1 and 8.x through 8.0.1 allows Remote Code Execution. Authenticated users with access to the Scheduled Reports module can achieve this by leveraging PHP deserialization in the email_recipients property. By using a crafted request, they can create a malicious report, containing a PHP-deserialization payload in the email_recipients field. Once someone accesses this report, the backend will deserialize the content of the email_recipients field and the payload gets executed. Project dependencies include a number of interesting PHP deserialization gadgets (e.g., Monolog/RCE1 from phpggc) that can be used for Code Execution.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Salesagility ≫ Suite CRM Version < 7.12.5

Salesagility ≫ Suite CRM Version >= 8.0 < 8.0.4

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	35.87%	0.969

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

CWE-502 Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid.

https://docs.suitecrm.com/8.x/admin/releases/8.0/

Vendor Advisory

Release Notes

https://github.com/manuelz120

Third Party Advisory

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2022-23940

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-23940

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-23940

EUVD