From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability ID: CVE-2023-6189 2. Vulnerability Name: Elevation of Privilege in M-Files Server 3. Description: In M-Files Server versions prior to 23.11.13156.0, missing access control checks allow attackers to execute data write and export tasks using the M-Files API methods. 4. Affected Products: All versions of M-Files Server prior to 23.11.13156.0. 5. Additional Information: - Using M-Files API methods, any user can write log entries and perform data export tasks, which should only be permitted for authenticated users. - CVSS 3.1 Base Score: 4.3 - CVSS 3.1 Temporal Score: 3.7 - CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:R - CWE: CWE-280 Improper Handling of Insufficient Permissions or Privileges - CAPEC: CAPEC-212 Functionality Misuse - Internal IDs: 167986, 167987 - Release Date: November 22, 2023 6. Exploitability: - Public Disclosure: No - Exploited in the Wild: No - Exploit Likelihood: Low – Internally discovered 7. Link: CVE-2023-6189 8. History: Released on November 22, 2023 This information provides a detailed description of the vulnerability, the scope of affected products, assessment scores, exploit likelihood, related links, and release date.