CVE-2024-36419

Publication date

2024-06-10 21:15:37

Family

GitHub_M

State

PUBLISHED

Description

SuiteCRM is an open-source Customer Relationship Management (CRM) software application. A vulnerability in versions prior to 8.6.1 allows for Host Header Injection when directly accessing the `/legacy` route. Version 8.6.1 contains a patch for the issue.