cvedb.io
CVE-2018-10207
MEDIUM · CVSS 5.3
EPSS exploitation probability: 0%
Published 2018-04-25T18:29:00.297 · Last modified 2026-06-17T01:33:40.833

Summary

An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. An attacker can exploit Missing Authorization on the FlexPaperViewer SWF reader, and export files that should have been restricted, via vectors involving page-by-page access to a document in SWF format.

Affected products

vaultize — enterprise_file_sharing

Does this affect you?

Add your gear to cvedb and we'll alert you only when vaultize ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.