CVE-2024-0563 MEDIUM

CVE-2024-0563: Denial of service condition in M-Files Server

Vendor M-Files Corporation
Product M-Files Server
Weakness CWE-770 · Uncontrolled resource consumption
Published February 23, 2024
Last update February 23, 2026

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

What the vulnerability does

01Description

Denial of service condition in M-Files Server in versions before 24.2 (excluding 23.2 SR7 and 23.8 SR5) allows anonymous user to cause denial of service against other anonymous users.

Key dates

02Disclosure timeline

February 23, 2024 CVE published
February 23, 2026 Record updated