CVE-2018-10207

2018-04-2518:00:00

mitre

www.cve.org

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.9%

JSON

An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. An attacker can exploit Missing Authorization on the FlexPaperViewer SWF reader, and export files that should have been restricted, via vectors involving page-by-page access to a document in SWF format.

References

www.excellium-services.com/cert-xlm-advisory/cve-2018-10207/