CVE-2022-3284 Information

Description

Download key for a file in a vault was passed in an insecure way that could easily be logged in M-Files New Web in M-Files before 22.11.12011.0. This issue affects M-Files New Web: before 22.11.12011.0.

Reference

https://www.m-files.com/about/trust-center/security-advisories/cve-2022-3284/