CVE-2025-64489 | SuiteCRM up to 7.14.7/8.9.0 Deactivation privileges management (GHSA-j6jg-9jj3-q2ph)

A vulnerability categorized as critical has been discovered in SuiteCRM up to 7.14.7/8.9.0. This vulnerability affects unknown code of the component Deactivation Handler. Such manipulation leads to improper privilege management.

This vulnerability is listed as CVE-2025-64489. The attack may be performed from remote. There is no available exploit.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More