Main Vulnerability Database Exploits ID:8896 - Exploit for Arbitrary file upload in SugarCRM - CVE-2023-22952

ID:8896 - Exploit for Arbitrary file upload in SugarCRM - CVE-2023-22952

Published: March 9, 2023

Vulnerability identifier: #VU71075

Vulnerability risk: Critical

CVE-ID: CVE-2023-22952

CWE-ID: CWE-434

Exploitation vector: Remote access

Vulnerable software:
SugarCRM

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/multi/http/sugarcrm_webshell_cve_2023_22952

Vulnerability description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to insufficient validation of file during file upload. A remote attacker bypass implemented authentication process, upload a malicious file and execute it on the server.

Successful exploitation of the vulnerability may allow an attacker to compromise the affected system.

Note, the vulnerability is being actively exploited in the wild.

Remediation

Install the v1.1 of "hotfix 91155 XXXX" for Sugar Sell, Serve, Enterprise, Professional, and Ultimate versions.

ID:8896 - Exploit for Arbitrary file upload in SugarCRM - CVE-2023-22952

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human