{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-14T18:51:31.203","vulnerabilities":[{"cve":{"id":"CVE-2023-42955","sourceIdentifier":"product-security@apple.com","published":"2024-05-14T13:46:21.790","lastModified":"2024-12-10T17:35:05.937","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Claris International has successfully resolved an issue of potentially exposing password information to front-end websites when signed in to the Admin Console with an administrator role.  This issue has been fixed in FileMaker Server 20.3.1 by eliminating the send of Admin Role passwords in the Node.js socket."},{"lang":"es","value":"Claris International ha resuelto con éxito un problema de exposición potencial de la información de la contraseña a sitios web de front-end al iniciar sesión en la Consola de administración con una función de administrador. Este problema se solucionó en FileMaker Server 20.3.1 eliminando el envío de contraseñas de la función de administrador en el socket de Node.js."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1\/AV:N\/AC:L\/PR:H\/UI:N\/S:U\/C:H\/I:N\/A:N","baseScore":4.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":1.2,"impactScore":3.6},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1\/AV:L\/AC:L\/PR:H\/UI:R\/S:U\/C:H\/I:H\/A:L","baseScore":6.1,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"LOW"},"exploitabilityScore":0.6,"impactScore":5.5}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-522"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-257"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:claris:filemaker_server:*:*:*:*:*:*:*:*","versionEndExcluding":"20.3.1","matchCriteriaId":"B444E1C4-D337-40FE-A1C3-2D4DBFAD28CA"}]}]}],"references":[{"url":"https:\/\/support.claris.com\/s\/article\/Administrator-role-passwords-being-exposed-when-logged-into-the-Admin-Console?language=en_US","source":"product-security@apple.com","tags":["Vendor Advisory"]},{"url":"https:\/\/support.claris.com\/s\/article\/Administrator-role-passwords-being-exposed-when-logged-into-the-Admin-Console?language=en_US","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}