Claris FileMaker Vulnerabilities

Source: https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=FileMaker There are 16 CVE Records that match FileMaker in MITRE database. There is another CVE for 2024, CVE-2024-23202, as mentioned in https://cyberfm.eu/fms-privilege-escalation/ and https://fm-security.com/posts/priv_esc/ that is not published yet. Name Description CVE-2024-27794 Claris FileMaker Server before version 20.3.2 was susceptible to a reflected Cross-Site Scripting vulnerability due to an improperly handled parameter in the FileMaker

21 mins

David Hamann

FileMaker Server Admin Console: Access and Role Restriction Issues

Uncovering Access and Role Restriction Vulnerabilities in the FileMaker Server Admin Console Source: https://davidhamann.de/2024/10/09/fms-bypassing-restrictions/ With a few security features added to the FileMaker Server Admin Console in the last few versions, I decided to play around with them to see how they are implemented. In this article I want to highlight three of the issues

1 mins

Alexey Dubov

FMS, privilege escalation

CVE macOS, Windows, Ubuntu FileMaker Server CVE-2024-23202 Source: https://fm-security.com/posts/priv_esc/ I have identified a privilege escalation vulnerability in FileMaker Server for all platforms (macOS, Windows, Ubuntu) This vulnerability allows an attacker, that has the most limited access to a remote database, hosted on FileMaker Server, to get full access privileges, with access to all data from all tables

18 mins

Alexey Dubov

FMS, bypass authorisation

Bypass authorization of FileMaker Server or “there is no such category” Source: https://fm-security.com/posts/bypass_auth/ CVE FileMaker Server CVE-2024-27790 Menu Introduction In the summer of 2023, I decided to investigate the internal communication protocol between FileMaker clients and the server. This led to the discovery of perhaps the most significant vulnerability in the platform’s history. I discovered that it

14 mins

Alexey Dubov

FileMaker, dylib hijacking

Understanding the Risks and Mitigations of dylib Hijacking in macOS FileMaker Pro CVE-2023-42920 Source: https://fm-security.com/posts/dylib/ CVE macOS FileMaker Pro CVE-2023-42920 Menu Introduction The dylib hijacking vulnerability for macOS is well known and studied. But from a FileMaker developer’s point of view, I have not seen any analysis of this problem. I will begin a little bit from afar. Embedding into someone else’s

29 mins

David Hamann

CVE-2021-44147: XML External Entity Vulnerability in Claris FileMaker

Uncovering XXE Vulnerabilities in FileMaker’s XML Parsing Source: https://davidhamann.de/2021/11/18/filemaker-xxe-vulnerability/ CVE FileMaker Pro CVE-2021-44147 A couple of months ago I looked more deeply into the “Import Records” functionality in FileMaker, especially the XML parsing, and was wondering if any XXE vulnerability may exist and how one could exploit this in technically interesting ways. The vulnerability is/was indeed there

8 mins

Christian Schmitz

Reading crash reports on MacOS

Interpreting MacOS Crash Reports: Diagnosing Issues in FileMaker Server Source: https://www.mbsplugins.de/archive/2019-10-15/Reading_crash_reports_on_MacOS/monkeybreadsoftware_blog_filemaker After the Windows crash report from earlier today where we couldn’t do much, here is an example for one where we could help on MacOS. When you find a crash report in /Library/Logs/DiagnosticReports folder (for server software) or ~/Library/Logs/DiagnosticReports (for user software), you can

11 mins

Christian Schmitz

Analyzing crash dump files for Windows

Interpreting Windows Crash Reports: Diagnosing Issues in FileMaker Server Source: https://www.mbsplugins.de/archive/2019-10-15/Analyzing_crash_dump_files_for/monkeybreadsoftware_blog_filemaker On Windows if an application like FileMaker Server crashes, you’ll find a dmp file for the crash. For example in C:\WINDOWS\MiniDump folder. Once you got the file, you wonder how to read it. It seems like the best was to use WinDbg application from