CVE-2024-11176

Improper access control vulnerability in M-Files Aino in versions before 24.10 allowed an authenticated user to access object information via incorrect calculation of effective permissions.
CVSS

No CVSS.

Configurations

No configuration.

History

21 Nov 2024, 15:15

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de control de acceso inadecuado en M-Files Aino en versiones anteriores a 24.10 permitía a un usuario autenticado acceder a la información del objeto mediante un cálculo incorrecto de permisos efectivos.

20 Nov 2024, 09:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-20 09:15

Updated : 2024-11-21 15:15


NVD link : CVE-2024-11176

Mitre link : CVE-2024-11176

CVE.ORG link : CVE-2024-11176


JSON object : View

Products Affected

No product.

CWE
CWE-682

Incorrect Calculation

CWE-732

Incorrect Permission Assignment for Critical Resource

CWE-863

Incorrect Authorization