M-files M-files Web

5 CVEs affecting M-files M-files Web. Latest disclosed: 2023-10-20. Critical: 0, High: 3.

Top CVEs affecting M-files M-files Web
CVESeverityScorePublishedSummary
CVE-2023-3406High7.72023-08-25Path Traversal issue in M-Files Classic Web versions below 23.6.12695.3 and LTS Service Release Versions before 23.2 LTS SR3 allows authenticated user to read…
CVE-2021-41807High7.52022-01-18Lack of rate limiting in M-Files Server and M-Files Web products with versions before 21.12.10873.0 in certain type of user accounts allows unlimited amount of…
CVE-2023-2325High7.32023-10-20Stored XSS Vulnerability in M-Files Classic Web versions before 23.10 and LTS Service Release Versions before 23.2 LTS SR4 and 23.8 LTS SR1allows attacker to e…
CVE-2022-4264Medium6.52022-12-09Incorrect Privilege Assignment in M-Files Web (Classic) in M-Files before 22.8.11691.0 allows low privilege user to change some configuration.
CVE-2022-4270Low2.02022-12-02Incorrect privilege assignment issue in M-Files Web in M-Files Web versions before 22.5.11436.1 could have changed permissions accidentally.