SSRF Vulnerability in Suite CRM version 7.14.2 Allows Arbitrary HTTP Requests

SSRF Vulnerability in Suite CRM version 7.14.2 Allows Arbitrary HTTP Requests

CVE-2023-6388 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N

Suite CRM version 7.14.2 allows making arbitrary HTTP requests through the vulnerable server. This is possible because the application is vulnerable to SSRF.

Learn more about our Cis Benchmark Audit For Server Software.