CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-14318

Improper access checks in M-Files Server before 25.12.15491.7 allows users to download files through M-Files Web using Web Companion despite Print and Download Prevention module being enabled.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.0%

CVSS Severity

CVSS v3 Score 4.3

References

https://product.m-files.com/security-advisories/cve-2025-14318/

Products affected by CVE-2025-14318

M-Files » M-Files Server » Version: Any

cpe:2.3:a:m-files:m-files_server:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-14318

Products

Pricing

Contact Us