GHSA-v3xm-8fcm-8j8q

Опубликовано: 22 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.3

Описание

Missing access permissions checks

in the M-Files server before 23.11.13156.0 allow attackers to perform data write and export

jobs using the M-Files API methods.

Missing access permissions checks

in the M-Files server before 23.11.13156.0 allow attackers to perform data write and export

jobs using the M-Files API methods.

Ссылки

https://nvd.nist.gov/vuln/detail/CVE-2023-6189
https://https://www.m-files.com/about/trust-center/security-advisories/cve-2023-6189
https://product.m-files.com/security-advisories/cve-2023-6189

EPSS

Процентиль: 25%

0.00085

Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2023-6189

Дефекты

CWE-280

Связанные уязвимости

CVE-2023-6189

CVSS3: 4.3

nvd

около 2 лет назад

Missing access permissions checks in the M-Files server before 23.11.13156.0 allow attackers to perform data write and export jobs using the M-Files API methods.

EPSS

Процентиль: 25%

0.00085

Низкий

4.3 Medium

CVSS3

CVE ID

CVE-2023-6189

Дефекты

CWE-280