Vulnerability Details CVE-2022-27474
SuiteCRM v7.11.23 was discovered to allow remote code execution via a crafted payload injected into the FirstName text field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.114
EPSS Ranking 93.3%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 6.5
References
Products affected by CVE-2022-27474
-
cpe:2.3:a:salesagility:suitecrm:7.11.23