CVE-2023-35810

HIGH

SugarCRM 11.0.0-11.0.5 12.0.0-12.0.2 - Authenticated PHP Object Injection via DocuSign Module

Title source: llm

Description

An issue was discovered in SugarCRM Enterprise before 11.0.6 and 12.x before 12.0.3. A Second-Order PHP Object Injection vulnerability has been identified in the DocuSign module. By using crafted requests, custom PHP code can be injected and executed through the DocuSign module because of missing input validation. Admin user privileges are required to exploit this vulnerability. Editions other than Enterprise are also affected.

References (3)

Core 3

Core References

Vendor Advisory

https://support.sugarcrm.com/Resources/Security/sugarcrm-sa-2023-009/

Mailing List mailing-list

http://seclists.org/fulldisclosure/2023/Aug/28

Exploit, Third Party Advisory

http://packetstormsecurity.com/files/174302/SugarCRM-12.2.0-PHP-Object-Injection.html

Scores

CVSS v3 7.2

EPSS 0.0122

EPSS Percentile 64.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-74

Status published

Products (1)

sugarcrm/sugarcrm 11.0.0 - 11.0.6 (5 CPE variants)

Published Jun 17, 2023

Tracked Since Feb 18, 2026