3 matches found
CVE-2023-2480
Missing access permissions checks in M-Files Client before 23.5.12598.0 excluding 23.2 SR2 and newer allows elevation of privilege via UI extension applications...
CVE-2023-2480
CVE-2023-2480 affects M-Files Client prior to 23.5.12598.0 (excluding 23.2 SR2 and newer). The root cause is missing access permission checks, enabling elevation of privilege via UI extension applications. Impact is practical privilege escalation. Remediation: upgrade to 23.5.12598.0 or later. Ot...
CVE-2023-2480 Elevation of Privilege in M-Files Desktop Client
Missing access permissions checks in M-Files Client before 23.5.12598.0 excluding 23.2 SR2 and newer allows elevation of privilege via UI extension applications...