VYPR
Unrated severityNVD Advisory· Published Oct 20, 2023· Updated Feb 23, 2026

M-Files Web Companion allows Remote Code Execution for some filetypes

CVE-2023-5524

Description

Insufficient blacklisting in M-Files Web Companion before release version 23.10 and LTS Service Release Versions before 23.8 LTS SR1 allows

Remote Code Execution

via specific file types

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.