Alex Nassi

“VENOM” Vulnerability

Discussion created by Alex Nassi Employee on May 14, 2015
You may have heard recently about a potential security vulnerability affecting virtualization environments called “VENOM." SugarCRM utilizes virtualization environments for services such as our On-Demand hosting. We have investigated this matter thoroughly and are pleased to inform you that customers hosted through our On-Demand environments are protected against this vulnerability. 
 
If you are an On-Site customer or have a hosted Sugar environment provided by a reseller, you may want to check with your hosting provider or reseller to ensure they have taken the appropriate steps to safeguard the environment.
 
For details on the vulnerability you can consult the following link:
 
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3456
 
At SugarCRM, we take security and the protection of your private information very seriously. If there are any questions about this matter, we invite you to ask them below.

Outcomes