Lucene search
HistoryMar 14, 2014 - 4:55 p.m.
CVE-2013-1851
cve-2013-1851
owncloud
vulnerability
remote authenticated
file import
blacklist vulnerability
nvd
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
36.7%
Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.0.13 and 4.5.x before 4.5.8, when the user_migrate application is enabled, allows remote authenticated users to import arbitrary files to the user’s account via unspecified vectors.
Affected configurations
Node
owncloudowncloudRange≤4.0.12
ORowncloudowncloudMatch3.0.0
ORowncloudowncloudMatch3.0.1
ORowncloudowncloudMatch3.0.2
ORowncloudowncloudMatch3.0.3
ORowncloudowncloudMatch4.0.0
ORowncloudowncloudMatch4.0.1
ORowncloudowncloudMatch4.0.2
ORowncloudowncloudMatch4.0.3
ORowncloudowncloudMatch4.0.4
ORowncloudowncloudMatch4.0.5
ORowncloudowncloudMatch4.0.6
ORowncloudowncloudMatch4.0.7
ORowncloudowncloudMatch4.0.8
ORowncloudowncloudMatch4.0.9
ORowncloudowncloudMatch4.0.10
ORowncloudowncloudMatch4.0.11
Node
owncloudowncloudMatch4.5.0
ORowncloudowncloudMatch4.5.1
ORowncloudowncloudMatch4.5.2
ORowncloudowncloudMatch4.5.3
ORowncloudowncloudMatch4.5.4
ORowncloudowncloudMatch4.5.5
ORowncloudowncloudMatch4.5.6
ORowncloudowncloudMatch4.5.7
Related
owncloud
owncloud
Server: user_migrate: Local file disclosure
2013-03-14 10:42:22
user_migrate: Local file disclosure - ownCloud
2013-03-14 17:45:09
prion
prion
Input validation
2014-03-14 16:55:00
nvd
nvd
CVE-2013-1851
2014-03-14 16:55:04
cvelist
cvelist
CVE-2013-1851
2014-03-14 16:00:00
ubuntucve
ubuntucve
CVE-2013-1851
2014-03-14 00:00:00
openvas
openvas
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
6.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
36.7%
Related for CVE-2013-1851