CVE-2023-3405

Summary

Unchecked parameter value in M-Files Server in versions before 23.6.12695.3 (excluding 23.2 SR2 and newer) allows anonymous user to cause denial of service

Affected Software

VendorProductVersion RangeStatus
M-FilesM-Files Server0 < 23.6.12695.3affected
M-FilesM-Files Server23.2.12340.11unaffected

Weaknesses

  • CWE-248: CWE-248 Uncaught Exception

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References