M-files M-files New Web
2 CVEs affecting M-files M-files New Web. Latest disclosed: 2023-03-06. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2022-3284 | Medium | 6.5 | 2023-03-06 | Download key for a file in a vault was passed in an insecure way that could easily be logged in M-Files New Web in M-Files before 22.11.12011.0. This issue aff… |
CVE-2022-4862 | Medium | 5.0 | 2023-03-06 | Rendering of HTML provided by another authenticated user is possible in browser on M-Files Web before 22.12.12140.3. This allows the content to steal user sens… |