Suite CRM version 7.14.2 allows making arbitrary HTTP requests through

the vulnerable server. This is possible because the application is vulnerable

to SSRF.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Mon, 29 Sep 2025 18:15:00 +0000

Type Values Removed Values Added
Description Suite CRM version 7.14.2 allows making arbitrary HTTP requests through the vulnerable server. This is possible because the application is vulnerable to SSRF. Suite CRM version 7.14.2 allows making arbitrary HTTP requests through the vulnerable server. This is possible because the application is vulnerable to SSRF.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: Fluid Attacks

Published:

Updated: 2025-09-29T18:05:47.532Z

Reserved: 2023-11-29T18:12:28.111Z

Link: CVE-2023-6388

cve-icon Vulnrichment

Updated: 2024-08-02T08:28:21.783Z

cve-icon NVD

Status : Modified

Published: 2024-02-07T03:15:49.857

Modified: 2025-09-29T18:15:29.600

Link: CVE-2023-6388

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.