CVE-2026-36340 | Krayin CRM 2.1.5 Compose Email privilege escalation

Inserito da Angelo Barbosa | Apr 30, 2026 | CVE

A vulnerability marked as critical has been reported in Krayin CRM 2.1.5. This affects an unknown part of the component Compose Email Handler. The manipulation leads to privilege escalation.

This vulnerability is traded as CVE-2026-36340. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-36340 | Krayin CRM 2.1.5 Compose Email privilege escalation

Post correlati

CVE-2024-40642 | netty-incubator-codec-ohttp up to 0.0.12 HTTP Protocol readRequestHead server-side request forgery (GHSA-q8f2-hxq5-cp4h)

CVE-2025-14729 | CTCMS Content Management System up to 2.1.2 Backend App Configuration /ctcms/libs/Ct_App.php save CT_App_Paytype code injection

CVE-2024-5206 | scikit-learn up to 1.4.x stop_words_ missing access control

CVE-2025-10757 | UTT 1200GW up to 3.0.0-170831 formConfigDnsFilterGlobal GroupName buffer overflow