Security Advisory

CVE-2021-41596

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-04 16:48:19

Last updated 2024-08-04 03:15:29

Assigner mitre

State PUBLISHED

Description

SuiteCRM before 7.10.33 and 7.11.22 allows information disclosure via Directory Traversal. An attacker can partially include arbitrary files via the importFile parameter of the RefreshMapping import functionality.

← Browse all CVEs View on cve.org ↗