๐Ÿ” CVE Alert

CVE-2025-5964

UNKNOWN 0.0

Path traversal in M-Files API

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

A path traversal issue in the API endpoint in M-Files Server before version 25.6.14925.0 allows an authenticated user to read files in the server.

CWE CWE-22
Vendor m-files corporation
Product m-files server
Published Jun 15, 2025
Last Updated Feb 23, 2026
Stay Ahead of the Next One

Get instant alerts for m-files corporation m-files server

Be the first to know when new unknown vulnerabilities affecting m-files corporation m-files server are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

M-Files Corporation / M-Files Server
0 < 25.6.14925.0

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
product.m-files.com: https://product.m-files.com/security-advisories/cve-2025-5964 empower.m-files.com: https://empower.m-files.com/security-advisories/CVE-2025-5964