From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability ID: CVE-2023-6910 2. Vulnerability Description: An API method in M-Files Server versions prior to 23.12.13195.0 allows uncontrolled resource consumption. An authenticated attacker can exhaust the server's storage space, causing the server to be unable to process requests. 3. Affected Products: - M-Files Server version 23.12.13195.0 - M-Files Server version 23.2 LTS SR6 (this service release is unaffected) - M-Files Server version 23.8 LTS SR4 (this service release is unaffected) 4. Additional Information: - Exploitation requires authentication or anonymous authentication enabled in the M-Files vault. - CVSS 3.1 Base Score: 6.5 - CVSS 3.1 Temporal Score: 5.9 - CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C - CWE: CWE-770 - Uncontrolled Resource Allocation or Throttling - CAPEC: CAPEC-130 - Excessive Allocation - Internal ID: 167985 - Release Date: December 18, 2023 5. Exploit Likelihood: - Public Disclosure: No - Exploitation: No - Exploit Likelihood: Low - Internally discovered 6. Links: - Detailed information for CVE-2023-6910: https://www.cve.org/CVERecord?id=CVE-2023-6910 7. History: - Released on December 18, 2023 - Affected products updated on January 30, 2024 - CWE updated on August 28, 2024 This information provides a detailed description and scope of impact for the CVE-2023-6910 vulnerability.