CVE-2026-39253
HighCVSS 8.1Exploitation Probability (EPSS)
Elevated risk52th percentile — higher than 52% of all known CVEs
Summary
An issue in Pivotal CRM v.6.6.04.08 allows a remote attacker to execute arbitrary code via the Pivotal.Core.Common.dll and Pivotal.Engine.Client.Services.Conversion.dll components.
Risk Assessment
An attacker could exploit this vulnerability to gain control over the system, potentially leading to serious security implications for the organization.
Recommendation
It is recommended to update Pivotal CRM to the latest version to mitigate this vulnerability and to monitor systems for unauthorized activities.
Original NVD description (English source)
An issue in Pivotal CRM v.6.6.04.08 allows a remote attacker to execute arbitrary code via the Pivotal.Core.Common.dll and Pivotal.Engine.Client.Services.Conversion.dll components.

