exploitDog

CVE-2024-27790

Опубликовано: 14 мая 2024

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Claris International has resolved an issue of potentially allowing unauthorized access to records stored in databases hosted on FileMaker Server. This issue has been fixed in FileMaker Server 20.3.2 by validating transactions before replying to client requests.

Ссылки

https://support.claris.com/s/answerview?anum=000041674&language=en_US
Vendor Advisory
https://support.claris.com/s/answerview?anum=000041674&language=en_US
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:claris:filemaker_server:*:*:*:*:*:*:*:*

Версия до 20.3.2 (исключая)

EPSS

Процентиль: 59%

0.00388

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-284

Связанные уязвимости

GHSA-rcf6-gj9x-5p73

CVSS3: 7.5

github

больше 1 года назад

Claris International has resolved an issue of potentially allowing unauthorized access to records stored in databases hosted on FileMaker Server. This issue has been fixed in FileMaker Server 20.3.2 by validating transactions before replying to client requests.

EPSS

Процентиль: 59%

0.00388

Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-284