Lack of rate limiting in M-Files Server and M-Files Web products with versions prior to 21.12.10873.0 in certain type of user accounts allows unlimited amount of attempts and therefore makes brute-forcing login accounts easier.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
m-files m-files server |
||
m-files m-files web |