CVE-2019-12598

Source
https://cve.org/CVERecord?id=CVE-2019-12598
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-12598.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-12598
Published
2019-06-07T18:29:00.607Z
Modified
2026-07-08T06:03:24.515849772Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 1 of 3).

Database specific
{
    "unresolved_ranges": [
        {
            "cpes": [
                "cpe:2.3:a:salesagility:suitecrm:*:*:*:*:*:*:*:*",
                "cpe:2.3:a:salesagility:suitecrm:*:*:*:*:lts:*:*:*"
            ],
            "extracted_events": [
                {
                    "introduced": "7.8.0"
                },
                {
                    "last_affected": "7.8.5"
                },
                {
                    "introduced": "7.8.0"
                },
                {
                    "last_affected": "7.8.5"
                },
                {
                    "introduced": "7.8.6"
                },
                {
                    "last_affected": "7.8.11"
                },
                {
                    "introduced": "7.8.6"
                },
                {
                    "last_affected": "7.8.11"
                },
                {
                    "introduced": "7.8.12"
                },
                {
                    "fixed": "7.8.30"
                },
                {
                    "introduced": "7.8.12"
                },
                {
                    "fixed": "7.8.30"
                },
                {
                    "introduced": "7.10.0"
                },
                {
                    "fixed": "7.10.17"
                },
                {
                    "introduced": "7.10.0"
                },
                {
                    "fixed": "7.10.17"
                },
                {
                    "introduced": "7.11.0"
                },
                {
                    "fixed": "7.11.5"
                },
                {
                    "introduced": "7.11.0"
                },
                {
                    "fixed": "7.11.5"
                }
            ],
            "vendor_product": "salesagility:suitecrm",
            "source": "CPE_RANGE"
        }
    ]
}
References

Affected packages

Git / github.com/SuiteCRM/SuiteCRM

Affected ranges

Type
GIT
Repo
https://github.com/SuiteCRM/SuiteCRM
Events
Database specific
{
    "extracted_events": [
        {
            "introduced": "7.8.x"
        },
        {
            "fixed": "7.8.30"
        },
        {
            "introduced": "7.10.x"
        },
        {
            "fixed": "7.10.17"
        },
        {
            "introduced": "7.11.x"
        },
        {
            "fixed": "7.11.5"
        }
    ],
    "source": "DESCRIPTION"
}

Affected versions

v7.*
v7.10.0
v7.10.1
v7.10.10
v7.10.11
v7.10.12
v7.10.13
v7.10.14
v7.10.15
v7.10.16
v7.10.2
v7.10.3
v7.10.4
v7.10.5
v7.10.6
v7.10.7
v7.11.0
v7.11.1
v7.11.2
v7.11.3
v7.11.4
v7.8.0
v7.8.1
v7.8.11
v7.8.12
v7.8.14
v7.8.15
v7.8.16
v7.8.17
v7.8.18
v7.8.19
v7.8.20
v7.8.21
v7.8.22
v7.8.23
v7.8.24
v7.8.25
v7.8.26
v7.8.27
v7.8.28
v7.8.29
v7.8.3
v7.8.4
v7.8.5
v7.8.9

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-12598.json"