In M-Files Server product with versions before 21.11.10775.0, enabling logging of Federated authentication to event log wrote sensitive information to log. Mitigating factors are logging is disabled by default.

Related CVEs

CVE-2021-41808

Key Information

GHSA ID

GHSA-h62q-wxxr-4qqj

Published

January 19, 2022 12:01 AM

Last Modified

January 27, 2022 12:04 AM

CVSS Score

2.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: July 10, 2025 6:27 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.