cvedb.io
CVE-2024-45392
HIGH · CVSS 7.7
EPSS exploitation probability: 0%
Published 2024-09-05T17:15:12.807 · Last modified 2026-06-17T07:54:07.547

Summary

SuiteCRM is an open-source customer relationship management (CRM) system. Prior to version 7.14.5 and 8.6.2, insufficient access control checks allow a threat actor to delete records via the API. Versions 7.14.5 and 8.6.2 contain a patch for the issue.

Affected products

salesagility — suitecrm

Does this affect you?

Add your gear to cvedb and we'll alert you only when salesagility ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.