3 matches found
CVE-2023-42920
CVE-2023-42920 concerns a dylib hijacking vulnerability in Claris FileMaker Pro.app and Claris Pro.app on macOS. Affected components are the FileMaker Pro.app and Claris Pro.app binaries; the underlying issue is dylib hijacking, with the CVSSv3.1 vector indicating Local attack vector, Low attack ...
CVE-2021-44147
CVE-2021-44147 affects Claris FileMaker Pro and Server (including WebDirect). The vulnerability is an XML External Entity (XXE) issue in which a crafted XML/Excel document can disclose local files and enable server-side request forgery. Impact: local file disclosure and SSRF capabilities as descr...
CVE-2014-8347
CVE-2014-8347 describes an authentication bypass in the MatchPasswordData function of DBEngine.dll used by FileMaker Pro 13.0v3 and FileMaker Pro Advanced 12.0v4. A local attacker could leverage this to gain elevated privileges, effectively bypassing login and obtaining higher access within the l...