In M-Files Web product with versions before 20.10.9524.1 and 20.10.9445.0, a remote attacker could use a flaw to obtain unauthenticated access to 3rd party component license key information on server.
References
Link | Resource |
---|---|
https://www.m-files.com/about/trust-center/security-vulnerabilities/cve-2021-37254/ | Vendor Advisory |
https://www.m-files.com/company/trust-center/vulnerability-disclosure/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-10-28T13:07:33
Updated: 2021-10-28T13:07:33
Reserved: 2021-07-21T00:00:00
Link: CVE-2021-37254
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-28T14:15:08.450
Modified: 2022-07-12T17:42:04.277
Link: CVE-2021-37254
JSON object: View
Redhat Information
No data.
CWE