The new version of M-Files, February, has a security vulnerability React - CVE-2025-55182?

Question

Has anyone noticed this "bug"?, Thanks. 
 ESET antivirus software blocked access to IIS/MFiles. 
 - ph

Joonas Linkola · Answer

Thank you for reporting this. I've forwarded your post to our Security team for their review. 
 For future reports of suspected vulnerabilities, you can also contact them directly at security@m-files.com . For more information, please see the M-Files Vulnerability Disclosure Public Policy .

Joonas Linkola · Answer

Response from our Security team: "We do not have the vulnerable component versions in any of our products. The screen-captured request looks like random probing that was blocked by their firewall." 
 You can consider contacting the antivirus software vendor if you'd like to report this as a false positive.

The new version of M-Files, February, has a security vulnerability React - CVE-2025-55182?

Contact Us

Schedule a Demo

Careers

Trust Center

Privacy Policy

Security Hall of Fame

Subcontractors

M-Files Community

Support Portal

Help Center

Product Center

Download M-Files

User Guides

Product News