CVE-2023-3627
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Jul 11, 2023
Updated: Jul 18, 2023
CWE ID 787
Summary
CVE-2023-3627 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the GitHub repository salesagility/suitecrm-core prior to version 8.3.1. An attacker can exploit this issue to perform unintended actions on a user's behalf by tricking them into opening a specially crafted link. This can lead to sensitive data being accessed or modified without the user's knowledge. Users are encouraged to update to the latest version of the repository to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share