Suite CRM version 7.14.2 allows making arbitrary HTTP requests through the vulnerable server. This is possible because the application is vulnerable to SSRF.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: Fluid Attacks

Published: 2024-02-07T02:47:59.391Z

Updated: 2024-08-02T08:28:21.783Z

Reserved: 2023-11-29T18:12:28.111Z

Link: CVE-2023-6388

cve-icon Vulnrichment

Updated: 2024-07-05T15:20:39.572Z

cve-icon NVD

Status : Analyzed

Published: 2024-02-07T03:15:49.857

Modified: 2024-02-14T20:15:52.940

Link: CVE-2023-6388

cve-icon Redhat

No data.