Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Incorrect Implementation of Authentication Algorithm
Vulnerability Description
Incorrect implementation in authentication protocol in M-Files Client before 22.5.11356.0 allows high privileged user to get other users tokens to another resource.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:N
Vulnerability Type
认证算法的不正确实现
Vulnerability Title
M-Files Client 授权问题漏洞
Vulnerability Description
M-Files是M-Files公司的一个创新的元数据驱动的文档管理平台。 M-Files Client 22.5.11356.0之前版本存在安全漏洞,该漏洞源于认证协议实施不正确,允许高权限用户获得其他用户的令牌到另一个资源。
CVSS Information
N/A
Vulnerability Type
N/A