Vulnerability Details CVE-2023-3405
Unchecked parameter value in M-Files Server in versions before 23.6.12695.3 (excluding 23.2 SR2 and newer) allows anonymous user to cause denial of service
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.1%
CVSS Severity
CVSS v3 Score 7.5
References
- https://empower.m-files.com/security-advisories/CVE-2023-3405
- https://product.m-files.com/security-advisories/cve-2023-3405/
- https://www.m-files.com/about/trust-center/security-advisories/cve-2023-3405-denial-of-service-in-m-files-server/
- https://www.m-files.com/about/trust-center/security-advisories/cve-2023-3405
Products affected by CVE-2023-3405
-
cpe:2.3:a:m-files:m-files_server:-
-
cpe:2.3:a:m-files:m-files_server:22.11.12011.0
-
cpe:2.3:a:m-files:m-files_server:22.12.12140.3
-
cpe:2.3:a:m-files:m-files_server:22.2.11051.0
-
cpe:2.3:a:m-files:m-files_server:22.3.11237.3
-
cpe:2.3:a:m-files:m-files_server:22.6.11534.4
-
cpe:2.3:a:m-files:m-files_server:23.2.12340.6
-
cpe:2.3:a:m-files:m-files_server:23.4.12455.0
-
cpe:2.3:a:m-files:m-files_server:23.4.12528.1