Lucene search
HistoryOct 03, 2022 - 4:20 p.m.
CVE-2014-3963
cve-2014-3963
owncloud server
permission vulnerability
remote access
authenticated users
nvd
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
37.1%
ownCloud Server before 6.0.1 does not properly check permissions, which allows remote authenticated users to access arbitrary preview pictures via unspecified vectors.
Affected configurations
Node
owncloudowncloudRange≤6.0.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| owncloud:owncloud | owncloud | le | 6.0.0 |
Related
openvas
openvas
ownCloud Preview Picture Access Authentication Bypass Vulnerability
2014-07-03 00:00:00
prion
prion
Code injection
2014-06-04 14:55:00
cvelist
cvelist
CVE-2014-3963
2022-10-03 16:20:22
ubuntucve
ubuntucve
CVE-2014-3963
2014-06-04 00:00:00
nvd
nvd
CVE-2014-3963
2014-06-04 14:55:07
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
6.5 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
37.1%
Related for CVE-2014-3963