Incorrect implementation in authentication protocol in M-Files Client before 22.5.11356.0 allows high privileged user to get other users tokens to another resource.
References
Link | Resource |
---|---|
https://www.m-files.com/about/trust-center/security-advisories/cve-2022-4861/ | Broken Link |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: M-Files Corporation
Published: 2022-12-30T13:31:21.079Z
Updated: 2022-12-30T14:04:07.177Z
Reserved: 2022-12-30T12:44:28.230Z
Link: CVE-2022-4861
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-12-30T14:15:08.963
Modified: 2023-01-06T18:58:17.253
Link: CVE-2022-4861
JSON object: View
Redhat Information
No data.