CVE-2024-27790

Claris International has resolved an issue of potentially allowing unauthorized access to records stored in databases hosted on FileMaker Server. This issue has been fixed in FileMaker Server 20.3.2 by validating transactions before replying to client requests.

Published: May 14, 2024
Updated: May 4, 2025
CVE: CVE-2024-27790
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.5
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
claris / filemaker_server	-	20.3.2

https://support.claris.com/s/answerview?anum=000041674&language=en_US

Vulnerability Database

CVE-2024-27790