Metrics
Affected Vendors & Products
Thu, 21 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
cvssV3_1
|
Wed, 20 Nov 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
M-files
M-files m-files |
|
CPEs | cpe:2.3:a:m-files:m-files:-:*:*:*:*:*:*:* | |
Vendors & Products |
M-files
M-files m-files |
|
Metrics |
cvssV3_1
|
Wed, 20 Nov 2024 08:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Authentication bypass condition in LDAP authentication in M-Files server versions before 24.11 supported usage of OpenLDAP configurations that allowed user authentication without a password when the LDAP server itself had the vulnerable configuration. | |
Title | Support for authentication bypass condition in M-Files LDAP authentication | |
Weaknesses | CWE-303 | |
References |
| |
Metrics |
cvssV4_0
|
Status: PUBLISHED
Assigner: M-Files Corporation
Published: 2024-11-20T08:36:03.443Z
Updated: 2024-12-16T07:01:27.047Z
Reserved: 2024-10-18T13:26:52.758Z
Link: CVE-2024-10127
Updated: 2024-11-20T20:20:17.514Z
Status : Awaiting Analysis
Published: 2024-11-20T09:15:04.313
Modified: 2024-11-21T15:15:19.910
Link: CVE-2024-10127
No data.