Anonymous Denial of Service Vulnerability Affects M-Files Server Versions
CVE-2024-0563

4.3MEDIUM

Key Information:

Vendor: M-files Corporation
Status: M-files Server
Vendor: CVE Published:; 23 February 2024

🔔 Create M-files Corporation Vulnerability Alert

What is CVE-2024-0563?

Denial of service condition in M-Files Server in versions before 24.2 (excluding 23.2 SR7 and 23.8 SR5) allows anonymous user to cause denial of service against other anonymous users.

Affected Version(s)

M-Files Server Windows 0 < 24.2

M-Files Server Windows 23.2 SR7

M-Files Server Windows 23.8 SR5

References

https://product.m-files.com/security-advisories/cve-2024-...

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 23, 2024
Vulnerability Reserved
Jan 15, 2024