CVE-2024-11176

Vulnerability Description

Improper access control vulnerability in M-Files Aino in versions before 24.10 allowed an authenticated user to access object information via incorrect evaluation of effective permissions.

Related Weaknesses (CWE)

CWE-732 CWE-863

References

https://empower.m-files.com/security-advisories/CVE-2024-11176
https://product.m-files.com/security-advisories/CVE-2024-11176

FAQ

What is CVE-2024-11176?

CVE-2024-11176 is a documented vulnerability. Improper access control vulnerability in M-Files Aino in versions before 24.10 allowed an authenticated user to access object information via incorrect evaluation of effective permissions.

How severe is CVE-2024-11176?

CVSS scoring is not yet available for CVE-2024-11176. Check NVD for updates.

Is there a patch for CVE-2024-11176?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.