Missing access permissions checks in the M-Files server before 23.11.13156.0 allow attackers to perform data write and export jobs using the M-Files API methods.
History

Fri, 22 Nov 2024 12:00:00 +0000


Wed, 28 Aug 2024 09:45:00 +0000


Wed, 28 Aug 2024 08:30:00 +0000

Type Values Removed Values Added
Description Missing access permissions checks in the M-Files server before 23.11.13156.0 allow attackers to perform data write and export jobs using the M-Files API methods. Missing access permissions checks in the M-Files server before 23.11.13156.0 allow attackers to perform data write and export jobs using the M-Files API methods.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: M-Files Corporation

Published: 2023-11-22T09:56:44.563Z

Updated: 2024-08-28T08:17:57.402Z

Reserved: 2023-11-17T13:00:28.506Z

Link: CVE-2023-6189

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-11-22T10:15:09.530

Modified: 2024-11-21T08:43:19.213

Link: CVE-2023-6189

cve-icon Redhat

No data.