Vulnerability Database

300,214

Total vulnerabilities in the database

CVE-2022-45185

An issue was discovered in SuiteCRM 7.12.7. Authenticated users can use CRM functions to upload malicious files. Then, deserialization can be used to achieve code execution.

Published: Jan 7, 2025
Updated: May 4, 2025
CVE: CVE-2022-45185
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
salesagility / suitecrm	7.12.7	7.12.7.x

https://docs.suitecrm.com/admin/releases/7.12.x/
https://github.com/Orange-Cyberdefense/CVE-repository/
https://github.com/Orange-Cyberdefense/CVE-repository/blob/master/PoCs/poc_SuiteCRM.py

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo