M-Files: >> M-Files Server >> 22.11.12011.0 Security Vulnerabilities
Unchecked parameter value in M-Files Server in versions before 23.6.12695.3 (excluding 23.2 SR2 and newer) allows anonymous user to cause denial of service
CVSS Score
7.5
EPSS Score
0.003
Published
2023-06-27
Desktop component service allows lateral movement between sessions in M-Files before 23.4.12455.0.
CVSS Score
3.6
EPSS Score
0.001
Published
2023-04-20
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4.12528.1
due to uncontrolled memory consumption.
CVSS Score
7.5
EPSS Score
0.004
Published
2023-04-20
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4.12528.1
due to uncontrolled memory consumption for a scheduled job.
CVSS Score
6.5
EPSS Score
0.005
Published
2023-04-20
User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4.12528.1
due to uncontrolled memory consumption.
CVSS Score
6.5
EPSS Score
0.005
Published
2023-04-05
Rendering of HTML provided by another authenticated user is possible in browser on M-Files Web before 22.12.12140.3. This allows the content to steal user sensitive information.
This issue affects M-Files New Web: before 22.12.12140.3.
CVSS Score
5.0
EPSS Score
0.005
Published
2023-03-06
Page 2