A vulnerable API method in M-Files Server before 23.12.13195.0 allows for uncontrolled resource consumption. Authenticated attacker can exhaust server storage space to a point where the server can no longer serve requests.
History

Fri, 22 Nov 2024 12:00:00 +0000


Wed, 28 Aug 2024 09:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-400
References

Wed, 28 Aug 2024 08:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-770
References

cve-icon MITRE

Status: PUBLISHED

Assigner: M-Files Corporation

Published: 2023-12-20T09:36:39.118Z

Updated: 2024-08-28T08:13:59.192Z

Reserved: 2023-12-18T07:52:44.859Z

Link: CVE-2023-6910

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-12-20T10:15:08.373

Modified: 2024-11-21T08:44:49.090

Link: CVE-2023-6910

cve-icon Redhat

No data.