Vulnerability Details CVE-2023-6239
Under rare conditions, the effective permissions of an object might be incorrectly calculated if the object has a specific configuration of metadata-driven permissions in M-Files Server versions 23.9, 23.10, and 23.11 before 23.11.13168.7, potentially enabling unauthorized access to the object.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 15.6%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2023-6239
-
cpe:2.3:a:m-files:m-files_server:*
-
cpe:2.3:a:m-files:m-files_server:23.10
-
cpe:2.3:a:m-files:m-files_server:23.9