CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-2480

Missing access permissions checks in M-Files Client before 23.5.12598.0 (excluding 23.2 SR2 and newer) allows elevation of privilege via UI extension applications

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.0%

CVSS Severity

CVSS v3 Score 7.5

References

https://product.m-files.com/security-advisories/cve-2023-2480/
https://www.m-files.com/about/trust-center/security-advisories/cve-2023-2480/
https://https://www.m-files.com/about/trust-center/security-advisories/cve-2023-2480/

Products affected by CVE-2023-2480

M-Files » M-Files » Version: N/A

cpe:2.3:a:m-files:m-files:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-2480

Products

Pricing

Contact Us