Vulnerability in M-files Corporation Server

CVE-2026-0983

Denial-of-service condition in M-Files Server versions before 26.5.16015.0, before 26.2 LTS, and before 25.8 LTS SR3 allows an authenticated user to cause the MFserver process to crash

EPSS: 0.001 (26.2th percentile) — read the EPSS interpretation.

Affected products

M-files Corporation Server — versions 0, LTS 25.8.15085.13, LTS 26.2.15718.8

Weakness classification (CWE)

CWE-1286

References

security@m-files.com (vendor-advisory)