How severe is CVE-2023-2480?

CVE-2023-2480 has a CVSS v3 score of 7.5 (HIGH).

CVE-2023-2480

Name: m-files
Author: m-files

7.5HIGH

Missing access permissions checks in M-Files Client before 23.5.12598.0 (excluding 23.2 SR2 and newer) allows elevation of privilege via UI extension applications

Publicado: 5/25/2023Atualizado: 11/21/2024

Descrição

Missing access permissions checks in M-Files Client before 23.5.12598.0 (excluding 23.2 SR2 and newer) allows elevation of privilege via UI extension applications

Análise IADesenvolvido por IA

Produtos Afetados

m-filesm-files

Referências

https://product.m-files.com/security-advisories/cve-2023-2480/
https://www.m-files.com/about/trust-center/security-advisories/cve-2023-2480/
Vendor Advisory
https://https://www.m-files.com/about/trust-center/security-advisories/cve-2023-2480/