Volerion logoVolerion
Volerion logoVolerion

Viafirma Documents Authorization Weaknesses Allow Privilege Escalation and Unauthorized Data Access

Vulnerability

Authorization weaknesses in Viafirma Documents version 3.7.129 enable an authenticated user without privileges to access and list data of other users, utilize features for creating, modifying, and deleting users, and escalate privileges by impersonating other users in the document generation and signing process.

Impact

Exploitation allows unauthorized users to access and manipulate other users' data, misuse user management features, and impersonate users in document-related activities, potentially leading to unauthorized actions or approvals.

Remediation

Users can update to Viafirma Documents version 3.7.139 or Viafirma Documents Compose version 1.9.2 to address this vulnerability.

Added: Jan 12, 2026, 3:19 PM
Updated: Jan 12, 2026, 3:19 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
5.0
exploitability
5.2
remediation
7.7
relevance
1.9
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.