M-files M-files
4 CVEs affecting M-files M-files. Latest disclosed: 2024-03-04. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-0213 | High | 8.8 | 2023-03-29 | Elevation of privilege issue in M-Files Installer versions before 22.6 on Windows allows user to gain SYSTEM privileges via DLL hijacking. |
CVE-2023-2480 | High | 7.5 | 2023-05-25 | Missing access permissions checks in M-Files Client before 23.5.12598.0 (excluding 23.2 SR2 and newer) allows elevation of privilege via UI extension applicati… |
CVE-2023-4479 | High | 7.3 | 2024-03-04 | Stored XSS Vulnerability in M-Files Web versions before 23.8 allows attacker to execute script on users browser via stored HTML document within limited time pe… |
CVE-2022-4264 | Medium | 6.5 | 2022-12-09 | Incorrect Privilege Assignment in M-Files Web (Classic) in M-Files before 22.8.11691.0 allows low privilege user to change some configuration. |