CVE-2023-6239

Under rare conditions, the effective permissions of an object might be incorrectly calculated if the object has a specific configuration of metadata-driven permissions in M-Files Server versions 23.9, 23.10, and 23.11 before 23.11.13168.7, potentially enabling unauthorized access to the object...

PT-2023-32573 · M Files · M-Files Server

Name of the Vulnerable Software and Affected Versions: M-Files Server versions 23.9 through 23.11 before 23.11.13168.7 Description: The issue arises under rare conditions when an object in M-Files Server has a specific configuration of metadata-driven permissions, potentially leading to incorrect...