CVE-2024-24818

EspoCRM is an Open Source Customer Relationship Management software. An attacker can inject arbitrary IP or domain in "Password Change" page and redirect victim to malicious page that could lead to credential stealing or another attack. This vulnerability is fixed in 8.1.2.

CVSS v3 5.9 MEDIUM

5.9^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.2 / Impact : 4.7

Attack Vector ADJACENT_NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://github.com/espocrm/espocrm/commit/3babdfa3399e328fb1bd83a1b4ed03d509f4c8e7	Patch
https://github.com/espocrm/espocrm/security/advisories/GHSA-8gv6-8r33-fm7j	Exploit Vendor Advisory
https://github.com/espocrm/espocrm/commit/3babdfa3399e328fb1bd83a1b4ed03d509f4c8e7	Patch
https://github.com/espocrm/espocrm/security/advisories/GHSA-8gv6-8r33-fm7j	Exploit Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:espocrm:espocrm:*:*:*:*:*:*:*:*

History

27 Jun 2025, 14:35

Type	Values Removed	Values Added
CWE		CWE-601
First Time		Espocrm espocrm Espocrm
References	~~() https://github.com/espocrm/espocrm/commit/3babdfa3399e328fb1bd83a1b4ed03d509f4c8e7 -~~	() https://github.com/espocrm/espocrm/commit/3babdfa3399e328fb1bd83a1b4ed03d509f4c8e7 - Patch
References	~~() https://github.com/espocrm/espocrm/security/advisories/GHSA-8gv6-8r33-fm7j -~~	() https://github.com/espocrm/espocrm/security/advisories/GHSA-8gv6-8r33-fm7j - Exploit, Vendor Advisory
CPE		cpe:2.3:a:espocrm:espocrm::::::::

Information

Published : 2024-03-21 02:52

Updated : 2025-06-27 14:35

NVD link : CVE-2024-24818

Mitre link : CVE-2024-24818

CVE.ORG link : CVE-2024-24818

JSON object : View

Products Affected

espocrm

espocrm

CWE

CWE-610

Externally Controlled Reference to a Resource in Another Sphere

CWE-601

URL Redirection to Untrusted Site ('Open Redirect')

{"id": "CVE-2024-24818", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security-advisories@github.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.9, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 4.7, "exploitabilityScore": 1.2}]}, "published": "2024-03-21T02:52:12.073", "references": [{"url": "https://github.com/espocrm/espocrm/commit/3babdfa3399e328fb1bd83a1b4ed03d509f4c8e7", "tags": ["Patch"], "source": "security-advisories@github.com"}, {"url": "https://github.com/espocrm/espocrm/security/advisories/GHSA-8gv6-8r33-fm7j", "tags": ["Exploit", "Vendor Advisory"], "source": "security-advisories@github.com"}, {"url": "https://github.com/espocrm/espocrm/commit/3babdfa3399e328fb1bd83a1b4ed03d509f4c8e7", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://github.com/espocrm/espocrm/security/advisories/GHSA-8gv6-8r33-fm7j", "tags": ["Exploit", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security-advisories@github.com", "description": [{"lang": "en", "value": "CWE-610"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-601"}]}], "descriptions": [{"lang": "en", "value": "EspoCRM is an Open Source Customer Relationship Management software. An attacker can inject arbitrary IP or domain in \"Password Change\" page and redirect victim to malicious page that could lead to credential stealing or another attack. This vulnerability is fixed in 8.1.2."}, {"lang": "es", "value": "EspoCRM es un software de gesti\u00f3n de relaciones con el cliente de c\u00f3digo abierto. Un atacante puede inyectar una direcci\u00f3n IP o un dominio arbitrario en la p\u00e1gina \"Cambio de contrase\u00f1a\" y redirigir a la v\u00edctima a una p\u00e1gina maliciosa que podr\u00eda provocar el robo de credenciales u otro ataque. Esta vulnerabilidad se soluciona en 8.1.2."}], "lastModified": "2025-06-27T14:35:32.800", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:espocrm:espocrm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4B720403-FE53-4C66-BA6A-BC535A68FA6B", "versionEndExcluding": "8.1.2"}], "operator": "OR"}]}], "sourceIdentifier": "security-advisories@github.com"}