Lucene search
M-Files CorporationCVE-2023-5523HistoryOct 20, 2023 - 7:15 a.m.
CVE-2023-5523
2023-10-2007:15:17
CWE-829
M-Files Corporation
web.nvd.nist.gov
22
cve
2023
5523
m-files
web companion
remote code execution
nvd
CVSS3
8.6
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
8
Confidence
High
EPSS
0.001
Percentile
40.3%
Execution of downloaded content flaw in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows
Remote Code Execution
Affected configurations
Node
m-filesweb_companionRange<23.8lts
ORm-filesweb_companionRange23.3–23.10-
ORm-filesweb_companionMatch23.8-lts
| Vendor | Product | Version | CPE |
|---|---|---|---|
| m-files | web_companion | * | cpe:2.3:a:m-files:web_companion:*:*:*:*:lts:*:*:* |
| m-files | web_companion | * | cpe:2.3:a:m-files:web_companion:*:*:*:*:-:*:*:* |
| m-files | web_companion | 23.8 | cpe:2.3:a:m-files:web_companion:23.8:-:*:*:lts:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Web Companion",
"vendor": "M-Files",
"versions": [
{
"lessThan": "23.10",
"status": "affected",
"version": "23.3",
"versionType": "custom"
},
{
"status": "unaffected",
"version": "23.8 LTS SR1"
}
]
}
]Related
prion
prion
Remote code execution
2023-10-20 07:15:00
cvelist
cvelist
CVE-2023-5523 M-Files Web Companion allows Remote Code Execution
2023-10-20 06:40:29
nvd
nvd
CVE-2023-5523
2023-10-20 07:15:17
vulnrichment
vulnrichment
CVE-2023-5523 M-Files Web Companion allows Remote Code Execution
2023-10-20 06:40:29
CVSS3
8.6
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
AI Score
8
Confidence
High
EPSS
0.001
Percentile
40.3%
Related for CVE-2023-5523