Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Incorrect privilege assignment in M-Files Web Server
Vulnerability Description
Incorrect privilege assignment issue in M-Files Web in M-Files Web versions before 22.5.11436.1 could have changed permissions accidentally.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N
Vulnerability Type
特权管理不恰当
Vulnerability Title
M-Files Web 安全漏洞
Vulnerability Description
M-Files Web是美国M-Files公司的一个智能信息管理平台。用于优化支持用户日常工作。 M-Files Web Classic 22.5.11436.1之前版本、M-Files Web vNext 22.5.11436.1 之前版本存在安全漏洞,该漏洞源于有权访问具有特殊 ACL 的文档的用户可能不小心使用不正确的默认权限保存了该文档,攻击者利用该漏洞可能会意外更改权限。
CVSS Information
N/A
Vulnerability Type
N/A