1 results (0.008 seconds)
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0
CVSS: 4.9EPSS: 0%CPEs: 1EXPL: 0CVE-2022-4861 – Incorrect Implementation of Authentication Algorithm
https://notcve.org/view.php?id=CVE-2022-4861
Incorrect implementation in authentication protocol in M-Files Client before 22.5.11356.0 allows high privileged user to get other users tokens to another resource. La implementación incorrecta en el protocolo de autenticación en M-Files Client anterior a 22.5.11356.0 permite a usuarios con altos privilegios obtener tokens de otros usuarios para otro recurso. • https://www.m-files.com/about/trust-center/security-advisories/cve-2022-4861 https://product.m-files.com/security-advisories/cve-2022-4861 • CWE-287: Improper Authentication CWE-303: Incorrect Implementation of Authentication Algorithm •