How severe is CVE-2022-4861?

CVE-2022-4861 has a CVSS v3 score of 4.8 (MEDIUM).

CVE-2022-4861

Name: m-files_client
Author: m-files

4.8MEDIUM

Incorrect implementation in authentication protocol in M-Files Client before 22.5.11356.0 allows high privileged user to get other users tokens to another resource.

Published: 12/30/2022Updated: 11/21/2024

Description

Incorrect implementation in authentication protocol in M-Files Client before 22.5.11356.0 allows high privileged user to get other users tokens to another resource.

AI AnalysisPowered by AI

Affected Products

m-filesm-files_client

References

https://product.m-files.com/security-advisories/cve-2022-4861/
https://www.m-files.com/about/trust-center/security-advisories/cve-2022-4861/
Broken Link
https://www.m-files.com/about/trust-center/security-advisories/cve-2022-4861/
Broken Link