Lucene search
K

295 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-18348

Malicious code in bioql PyPI...

8.4CVSS6.4AI score0.1109EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2021-28813

Malicious code in bioql PyPI...

2.3CVSS4.5AI score0.00246EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-12443

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00796EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/17 8:7 p.m.14 views

CVE-2025-5964

A path traversal issue in the API endpoint in M-Files Server before version 25.6.14925.0 allows an authenticated user to read files in the server...

8.4CVSS6.2AI score0.1109EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/06/16 12:0 a.m.9 views

The vulnerability of the M-Files Server platform’s interface allows a perpetrator to read arbitrary files.

The vulnerability of the M-Files Server platform’s automation interface is related to incorrect restrictions on the path name to the restricted catalog during the processing of the final point. Exploiting this vulnerability allows a malicious actor to remotely read arbitrary files...

7.7CVSS5.6AI score0.1109EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2025/06/15 8:15 p.m.20 views

CVE-2025-5964

A path traversal issue in the API endpoint in M-Files Server before version 25.6.14925.0 allows an authenticated user to read files in the server...

8.4CVSS0.1109EPSS
Exploits1References2
OSV
OSV
added 2025/06/15 8:15 p.m.4 views

CVE-2025-5964

A path traversal issue in the API endpoint in M-Files Server before version 25.6.14925.0 allows an authenticated user to read files in the server...

6.5CVSS5.8AI score0.1109EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/06/15 12:0 a.m.5 views

M-Files Server 安全漏洞

M-Files Server is a server for the M-Files system from M-Files, Inc. A security vulnerability exists in M-Files Server versions prior to 25.6.14925.0 that stems from a path traversal issue in the API endpoint that could result in reading server files...

8.4CVSS6.4AI score0.1109EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.5 views

PT-2025-25504 · M Files · M-Files Server

Name of the Vulnerable Software and Affected Versions: M-Files Server versions prior to 25.6.14925.0 Description: A path traversal issue in the API endpoint in M-Files Server allows an authenticated user to read files in the server. Recommendations: For versions prior to 25.6.14925.0, update to...

8.4CVSS6.2AI score0.1109EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2025/05/23 11:57 a.m.5 views

CVE-2025-0619

Unsafe password recovery from configuration in M-Files Server before 25.1 allows a highly privileged user to recover external connector passwords...

4.9CVSS6.9AI score0.00408EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 11:34 a.m.5 views

CVE-2025-0635

Denial of service condition in M-Files Server in versions before 25.1.14445.5 allows an unauthenticated user to consume computing resources in certain conditions...

7.5CVSS6.9AI score0.00515EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:32 a.m.9 views

CVE-2024-0563

Denial of service condition in M-Files Server in versions before 24.2 excluding 23.2 SR7 and 23.8 SR5 allows anonymous user to cause denial of service against other anonymous users...

6.5CVSS6.8AI score0.00706EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:40 a.m.6 views

CVE-2024-10127

Authentication bypass condition in LDAP authentication in M-Files server versions before 24.11 supported usage of OpenLDAP configurations that allowed user authentication without a password when the LDAP server itself had the vulnerable configuration...

9.8CVSS7.4AI score0.00597EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:40 a.m.6 views

CVE-2024-10126

Local File Inclusion vulnerability in M-Files Server in versions before 24.11 excluding 24.8 SR1, 24.2 SR3 and 23.8 SR7 allows an authenticated user to read server local files of a limited set of filetypes via document preview...

5.3CVSS6.5AI score0.00374EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:54 a.m.14 views

CVE-2023-3425

Out-of-bounds read issue in M-Files Server versions below 23.8.12892.6 and LTS Service Release Versions before 23.2 LTS SR3 allows unauthenticated user to read restricted amount of bytes from memory...

6.5CVSS6.9AI score0.00535EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:52 a.m.6 views

CVE-2023-0383

User-controlled operations could have allowed Denial of Service in M-Files Server before 23.4.12528.1 due to uncontrolled memory consumption...

7.5CVSS6.8AI score0.00852EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:7 a.m.9 views

CVE-2023-6910

A vulnerable API method in M-Files Server before 23.12.13195.0 allows for uncontrolled resource consumption. Authenticated attacker can exhaust server storage space to a point where the server can no longer serve requests...

6.5CVSS6.8AI score0.00916EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:6 a.m.9 views

CVE-2023-6912

Lack of protection against brute force attacks in M-Files Server before 23.12.13205.0 allows an attacker unlimited authentication attempts, potentially compromising targeted M-Files user accounts by guessing passwords...

9.8CVSS7.2AI score0.00975EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/06 7:34 a.m.20 views

CVE-2025-3086

Improper isolation of users in M-Files Server version before 25.3.14549 allows anonymous user to affect other anonymous users views and possibly cause a denial of service...

7.1CVSS6.9AI score0.00392EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/06 6:34 a.m.14 views

CVE-2025-2159

Stored XSS in Desktop UI in M-Files Server Admin tool before version 25.3.14681.7 on Windows allows authenticated local user to run scripts via UI...

5.1CVSS5.7AI score0.0021EPSS
Exploits0References1
Rows per page
Query Builder