Description

Permissions bypass in M-Files Connector for Copilot before version 24.9.3 allows authenticated user to access limited amount of documents via incorrect access control list calculation

INFO

Published Date :

2024-10-02T05:57:40.568Z

Last Modified :

2026-02-23T10:19:42.740Z

Source :

M-Files Corporation
AFFECTED PRODUCTS

The following products are affected by CVE-2024-9333 vulnerability.

No data.

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-9333.

URL Resource
https://empower.m-files.com/security-advisories/CVE-2024-9333 cve-icon cve-icon
https://product.m-files.com/security-advisories/cve-2024-9333/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability