What is CVE-2018-25311?

CVE-2018-25311 is a medium-severity vulnerability in Videoflow Ltd. Digital Video Protection, classified under Path Traversal. CVSS score: 6.5/10. Published 2026-04-29.

How severe is CVE-2018-25311?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Path Traversal in Videoflow Ltd. Digital Video Protection

CVE-2018-25311

VideoFlow Digital Video Protection DVP 2.10 contains an authenticated directory traversal vulnerability that allows attackers with valid credentials to disclose arbitrary files by injecting path traversal sequences in the ID parameter. Att…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.004 (62.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Videoflow Ltd. Digital Video Protection — versions 2.10, 1.40.0.15, 2.10.0.5

Weakness classification (CWE)

CWE-22 — Path Traversal

References

disclosure@vulncheck.com (exploit)
disclosure@vulncheck.com (vendor-advisory)
disclosure@vulncheck.com (third-party-advisory)

Frequently asked questions

What is CVE-2018-25311?: CVE-2018-25311 is a medium-severity vulnerability in Videoflow Ltd. Digital Video Protection, classified under Path Traversal. CVSS score: 6.5/10. Published 2026-04-29.
How severe is CVE-2018-25311?: Medium severity. CVSS v3 base score is 6.5 out of 10.