PT-2025-47139 · M Files · M-Files Server
Published
2025-11-17
·
Updated
2025-11-20
·
CVE-2025-11681
CVSS v4.0
7.1
High
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
M-Files Server versions prior to 25.11.15392.1
M-Files Server versions prior to 25.2 LTS SR2
M-Files Server versions prior to 25.8 LTS SR2
Description
An authenticated user can trigger a denial-of-service condition, causing the
MFserver process to crash.Recommendations
Update M-Files Server to version 25.11.15392.1 or later.
Update M-Files Server to version 25.2 LTS SR2 or later.
Update M-Files Server to version 25.8 LTS SR2 or later.
Fix
DoS
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
M-Files Server