CVE-2023-42954

Name of the Vulnerable Software and Affected Versions FileMaker Server versions prior to 20.3.1

Description A privilege escalation issue existed in FileMaker Server, potentially exposing sensitive information to front-end websites when signed in to the Admin Console with an administrator role. This issue has been fixed by reducing the information sent in requests.

Recommendations For versions prior to 20.3.1, update to FileMaker Server 20.3.1 to resolve the issue. As a temporary workaround, consider restricting access to the Admin Console to minimize the risk of exploitation.