CVE-2023-3627

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jul 11, 2023
Updated: Jul 18, 2023
CWE ID 787

Summary

CVE-2023-3627 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the GitHub repository salesagility/suitecrm-core prior to version 8.3.1. An attacker can exploit this issue to perform unintended actions on a user's behalf by tricking them into opening a specially crafted link. This can lead to sensitive data being accessed or modified without the user's knowledge. Users are encouraged to update to the latest version of the repository to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share