Download key for a file in a vault was passed in an insecure way that could easily be logged in M-Files New Web in M-Files before 22.11.12011.0.
This issue affects M-Files New Web: before 22.11.12011.0.
Metrics
Affected Vendors & Products
References
History
Wed, 28 Aug 2024 10:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
MITRE
Status: PUBLISHED
Assigner: M-Files Corporation
Published: 2023-03-06T10:39:43.877Z
Updated: 2024-08-28T20:00:07.310Z
Reserved: 2022-09-23T10:58:26.526Z
Link: CVE-2022-3284
Vulnrichment
Updated: 2024-08-03T01:07:05.842Z
NVD
Status : Modified
Published: 2023-03-06T11:15:10.430
Modified: 2024-11-21T07:19:13.033
Link: CVE-2022-3284
Redhat
No data.