A vulnerable API method in M-Files Server before 23.12.13195.0 allows for uncontrolled resource consumption. Authenticated attacker can exhaust server storage space to a point where the server can no longer serve requests.
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 12:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
References |
|
Wed, 28 Aug 2024 09:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-400 | |
References |
|
Wed, 28 Aug 2024 08:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-770 | |
References |
|
MITRE
Status: PUBLISHED
Assigner: M-Files Corporation
Published: 2023-12-20T09:36:39.118Z
Updated: 2024-08-28T08:13:59.192Z
Reserved: 2023-12-18T07:52:44.859Z
Link: CVE-2023-6910
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-12-20T10:15:08.373
Modified: 2024-11-21T08:44:49.090
Link: CVE-2023-6910
Redhat
No data.