Lucene search
HistoryMar 14, 2014 - 4:55 p.m.
CVE-2013-2089
owncloud
vulnerability
remote code execution
cve-2013-2089
nvd
4.6 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:S/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.4%
Incomplete blacklist vulnerability in ownCloud before 5.0.6 allows remote authenticated users to execute arbitrary PHP code by uploading a crafted file, then accessing it via a direct request to the file in /data.
Affected configurations
Node
owncloudowncloudRange≤5.0.5
ORowncloudowncloudMatch5.0.0
ORowncloudowncloudMatch5.0.1
ORowncloudowncloudMatch5.0.2
ORowncloudowncloudMatch5.0.3
ORowncloudowncloudMatch5.0.4
Related
ubuntucve
ubuntucve
CVE-2013-2089
2014-03-14 00:00:00
cvelist
cvelist
CVE-2013-2089
2014-03-14 16:00:00
owncloud
owncloud
Incomplete blacklist vulnerability - ownCloud
2013-05-14 18:12:51
Server: Incomplete blacklist vulnerability
2013-05-14 11:42:22
prion
prion
Design/Logic Flaw
2014-03-14 16:55:00
nvd
nvd
CVE-2013-2089
2014-03-14 16:55:05
openvas
openvas
ownCloud Multiple Vulnerabilities - 01 (May 2014)
2014-05-06 00:00:00
freebsd
freebsd
owncloud -- Multiple security vulnerabilities
2013-05-14 00:00:00
nessus
nessus
4.6 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:S/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
56.4%
Related for CVE-2013-2089