M-Files Server Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in M-Files Server versions prior to 26.5.16015.0, before 26.2 LTS SR1, and before 25.8 LTS SR5. This vulnerability allows an authenticated user to cause the MFserver process to crash, disrupting service availability.

Impact

Exploitation of this vulnerability leads to a crash of the MFserver process, causing a denial-of-service condition on the affected system.

Added: May 18, 2026, 12:22 PM

Updated: May 18, 2026, 12:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.9

remediation

0.0

relevance

8.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

4.9

remediation

0.0

relevance

8.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

M-Files Server Denial-of-Service Vulnerability

Vulnerability

Impact

Affected Products

M-Files Server

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating