Lucene search
OwnCloudOC-SA-2017-001HistoryFeb 02, 2017 - 8:46 a.m.
Server: User enumeration with error messages
2017-02-0208:46:29
owncloud.org
497
0.001 Low
EPSS
Percentile
46.6%
This issue occurs at sending a password reset E-Mail, where a difference in error messages could allow an attacker to determine if the username is valid or not
For more information please consult the official advisory.
This advisory is licensed CC BY-SA 4.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| owncloud server | lt | 9.0.7 | |
| owncloud server | lt | 8.2.9 | |
| owncloud server | lt | 9.1.3 | |
| owncloud server | lt | 8.1.11 |
Related
prion
prion
Authentication flaw
2017-03-03 15:59:00
osv
osv
CVE-2017-5865
2017-03-03 15:59:01
ubuntucve
ubuntucve
CVE-2017-5865
2017-03-03 00:00:00
cve
cve
CVE-2017-5865
2017-03-03 15:59:01
owncloud
owncloud
User enumeration with error messages - ownCloud
2017-02-02 11:35:21
cvelist
cvelist
CVE-2017-5865
2017-03-03 15:00:00
nvd
nvd
CVE-2017-5865
2017-03-03 15:59:01
openvas
openvas
ownCloud Multiple Vulnerabilities (Feb 2017) - Linux
2017-02-08 00:00:00
ownCloud Multiple Vulnerabilities (Feb 2017) - Windows
2017-02-08 00:00:00