CVE-2024-0563

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Feb 23, 2024

CWE ID 770

Summary

CVE-2024-0563 is a new denial-of-service vulnerability affecting M-Files Server versions before 24.2, except for 23.2 SR7 and 23.8 SR5. Anonymous users can exploit this issue to cause service disruptions for other anonymous users. The vulnerability does not involve authenticated attacks and can lead to significant downtime, impacting productivity and potentially causing business disruptions. It is essential for organizations using affected M-Files Server versions to apply the necessary patches promptly to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

M-Files

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uJ9LEW
https://www.cve.org/CVERecord?id=CVE-2024-0563
https://nvd.nist.gov/vuln/detail/CVE-2024-0563

Back to Vulnerability Database

CVE-2024-0563

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations