About
Search
Welcome to M-Files Empower – our new support experience. We'd love to hear what you think!Give feedback
Home/Product information and downloads/Security advisories

CVE-2022-39019 Pdftron: add security layer to avoid the lack of authorisation check on rendered images from pdftron

2022-08-20

Description

Pdftron doesn’t provide any native mechanism to ensure that rendered documents cannot be opened by someone else than the user supposed to access the rendered document. We had to implement our own additional layer of security to check for the current user session and determine if the URLs can be opened or not. Risk level: High Fix: Upgrade to version 3.3.11.3 or later.

Affected products

Hubshare

On this page
Description
Affected products
Popular links
What is enterprise content management?Business process managementCollaboration solutionsSolutions by industryKey capabilities
About M-Files
Contact usSchedule a demoCareersTrust CenterPrivacy policySecurity Hall of Fame
Resources
Customer Support PortalPartner HubDeveloper PortalUser guideM-Files CommunityTerms and conditions