Elevation of Privilege Vulnerability in M-Files Client

CVE-2023-2480 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Missing access permissions checks in M-Files Client before 23.5.12598.0 (excluding 23.2 SR2 and newer) allows elevation of privilege via UI extension applications

Learn more about our Web Application Penetration Testing UK.