CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-10211

An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. There is improper authorization when listing the history of another user via a modified "vaultize_session_id" value in a cookie.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.0%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

https://cds.thalesgroup.com/en/tcs-cert/CVE-2018-10211
https://www.excellium-services.com/cert-xlm-advisory/cve-2018-10211/
https://www.excellium-services.com/cert-xlm-advisory/cve-2018-10211/

Products affected by CVE-2018-10211

Vaultize » Enterprise File Sharing » Version: 17.05.31

cpe:2.3:a:vaultize:enterprise_file_sharing:17.05.31

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-10211

Products

Pricing

Contact Us