Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insecure way of passing a download key
Vulnerability Description
Download key for a file in a vault was passed in an insecure way that could easily be logged in M-Files New Web in M-Files before 22.11.12011.0. This issue affects M-Files New Web: before 22.11.12011.0.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
M-Files 安全漏洞
Vulnerability Description
M-Files是M-Files公司的一个创新的元数据驱动的文档管理平台。 M-Files New Web 22.11.12011.0之前版本存在安全漏洞,该漏洞源于保险库中文件的下载密钥以不安全的方式传递,这很容易被记录。
CVSS Information
N/A
Vulnerability Type
N/A