High severity8.1NVD Advisory· Published Jan 25, 2018· Updated Jun 17, 2026
CVE-2016-10710
CVE-2016-10710
Description
Biscom Secure File Transfer (SFT) 5.0.1000 through 5.0.1048 does not validate the dataFieldId value, and uses sequential numbers, which allows remote authenticated users to overwrite or read files via crafted requests. Version 5.0.1050 contains the fix.
Affected products
1- Range: 5.0.1000 - 5.0.1048
Patches
Vulnerability mechanics
References
1- threat.tevora.com/biscom-secure-file-transfer-arbitrary-file-download/nvdExploitTechnical DescriptionThird Party Advisory
News mentions
0No linked articles in our index yet.