CVE-2019-17319
First published: Mon Oct 07 2019(Updated: )
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sugarcrm Sugarcrm | >=7.9.0.0<7.9.5.0 | |
| Sugarcrm Sugarcrm | >=8.0.0<8.0.4 | |
| Sugarcrm Sugarcrm | >=9.0.0<9.0.2 | |
| Sugarcrm Sugarcrm | >=7.9.0.0<7.9.5.0 | |
| Sugarcrm Sugarcrm | >=8.0.0<8.0.4 | |
| Sugarcrm Sugarcrm | >=9.0.0<9.0.2 | |
| Sugarcrm Sugarcrm | >=7.9.0.0<7.9.5.0 | |
| Sugarcrm Sugarcrm | >=8.0.0<8.0.4 | |
| Sugarcrm Sugarcrm | >=9.0.0<9.0.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-17319?
CVE-2019-17319 is a vulnerability in SugarCRM that allows SQL injection in the Emails module by a regular user.
What software versions are affected by CVE-2019-17319?
Versions between 7.9.0.0 and 7.9.5.0 for the Enterprise, Professional, and Ultimate editions of SugarCRM, versions between 8.0.0 and 8.0.4 for the Enterprise, Professional, and Ultimate editions, and versions between 9.0.0 and 9.0.2 for the Enterprise, Professional, and Ultimate editions are affected.
What is the severity of CVE-2019-17319?
CVE-2019-17319 has a severity rating of 8.8 (high).
How can I fix CVE-2019-17319?
To fix CVE-2019-17319, it is recommended to upgrade to version 8.0.4 or 9.0.2 of SugarCRM.
Where can I find more information about CVE-2019-17319?
You can find more information about CVE-2019-17319 at the following reference: [https://support.sugarcrm.com/Resources/Security/sugarcrm-sa-2019-047/](https://support.sugarcrm.com/Resources/Security/sugarcrm-sa-2019-047/)
- collector/nvd-index
- vendor/sugarcrm
- product/sugarcrm
- canonical/sugarcrm sugarcrm