πŸ” CVE Alert

CVE-2024-10126

UNKNOWN 0.0

Local file inclusion vulnerability in M-Files Server

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Local File Inclusion vulnerability in M-Files Server in versions before 24.11 (excluding 24.8 SR1, 24.2 SR3 and 23.8 SR7) allows an authenticated user to read server local files of a limited set of filetypes via document preview.

CWE CWE-552
Vendor m-files corporation"
Product m-files server
Published Nov 20, 2024
Last Updated Feb 23, 2026
Stay Ahead of the Next One

Get instant alerts for m-files corporation" m-files server

Be the first to know when new unknown vulnerabilities affecting m-files corporation" m-files server are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

Affected Versions

M-Files Corporation" / M-Files Server
0 < 24.11

References

NVD β†— CVE.org β†— EPSS Data β†—
product.m-files.com: https://product.m-files.com/security-advisories/CVE-2024-10126 empower.m-files.com: https://empower.m-files.com/security-advisories/CVE-2024-10126

Credits

NicolΓ² Vinci