Vulnerability Details CVE-2023-5524
Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows
Remote Code Execution
via specific file types
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 73.7%
CVSS Severity
CVSS v3 Score 8.2
References
Products affected by CVE-2023-5524
-
cpe:2.3:a:m-files:web_companion:*
-
cpe:2.3:a:m-files:web_companion:23.8