← back
CVE-2025-45753

CVE-2025-45753

CVSS 7.2 HIGHEPSS 0.4%CWE-94
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.2EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
21 May 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability in Vtiger CRM Open Source Edition v8.3.0 allows an attacker with admin privileges to execute arbitrary PHP code by exploiting the ZIP import functionality in the Module Import feature.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a