CVE-2023-3405

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jun 27, 2023

Updated: Jul 6, 2023

CWE ID 347

Summary

CVE-2023-3405 is a vulnerability affecting M-Files Server versions before 23.6.12695.3 (excluding 23.2 SR2 and newer). An unchecked parameter value in the server allows anonymous users to induce a denial of service condition. This issue may result in the server becoming unresponsive or unavailable, potentially disrupting business operations. It is recommended that affected organizations upgrade to a patched version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

VMware Tools
Debian
Fedora Operating System

Affected Vendors

Debian
Fedora Project
VMware Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tI53TC
https://www.cve.org/CVERecord?id=CVE-2023-3405
https://nvd.nist.gov/vuln/detail/CVE-2023-3405

Back to Vulnerability Database