exploitDog

GHSA-grx8-c238-5vmr

Опубликовано: 21 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS4: 6.9

CVSS3: 4.9

Описание

Denial-of-service vulnerability in M-Files Server versions before 26.1.15632.3 allows an authenticated attacker with vault administrator privileges to crash the M-Files Server process by calling a vulnerable API endpoint.

Denial-of-service vulnerability in M-Files Server versions before 26.1.15632.3 allows an authenticated attacker with vault administrator privileges to crash the M-Files Server process by calling a vulnerable API endpoint.

Ссылки

EPSS

Процентиль: 27%

0.00094

Низкий

6.9 Medium

CVSS4

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-1286

Связанные уязвимости

CVE-2026-0663

CVSS3: 4.9

nvd

18 дней назад

Denial-of-service vulnerability in M-Files Server versions before 26.1.15632.3 allows an authenticated attacker with vault administrator privileges to crash the M-Files Server process by calling a vulnerable API endpoint.

EPSS

Процентиль: 27%

0.00094

Низкий

6.9 Medium

CVSS4

4.9 Medium

CVSS3

CVE ID

Дефекты

CWE-1286