V
Vexday
by TrueHacking
›
PT
ES
EN
Intelligence
▾
Intelligence
Exploit Timeline
risk queue
Threats
ransomware · malware
Overview
observatory
Triage Room
Explore
▾
Explore
CVEs
Technologies
Vendors
Weakness types
Briefing
Live
Home
/
Technologies
/
SugarCRM
Vulnerabilities in
SugarCRM
2 results
CVE-2024-58258
HIGH
SugarCRM before 13.0.4 and 14.x before 14.0.1 allows SSRF in the API module because a limited type of code injection can occur.
EPSS
13.2%
CVE-2025-25034
CRITICAL
SugarCRM PHP Deserialization RCE
EPSS
3.0%