M-files » M-files : Security Vulnerabilities, CVEs,

CVE-2023-4479

Stored XSS Vulnerability in M-Files Web versions before 23.8 allows attacker to execute script on users browser via stored HTML document within limited time period.
Max CVSS
7.3
EPSS Score
0.04%
Published
2024-03-04
Updated
2024-03-04

CVE-2023-2480

Missing access permissions checks in M-Files Client before 23.5.12598.0 (excluding 23.2 SR2 and newer) allows elevation of privilege via UI extension applications
Max CVSS
7.8
EPSS Score
0.05%
Published
2023-05-25
Updated
2023-06-27

CVE-2023-0213

Elevation of privilege issue in M-Files Installer versions before 22.6 on Windows allows user to gain SYSTEM privileges via DLL hijacking.
Max CVSS
8.8
EPSS Score
0.04%
Published
2023-03-29
Updated
2023-04-05

CVE-2022-4264

Incorrect Privilege Assignment in M-Files Web (Classic) in M-Files before 22.8.11691.0 allows low privilege user to change some configuration.
Max CVSS
6.5
EPSS Score
0.05%
Published
2022-12-09
Updated
2022-12-12
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close