Lucene search

Ralf Vroomen – Vulnerability discovery and disclosure.OWNCLOUD:F82515614ACD68026D39DF17260B992F

HistoryAug 25, 2015 - 6:52 p.m.

Calendar export: Authorization Bypass Through User-Controlled Key - ownCloud

2015-08-2518:52:56

Ralf Vroomen – Vulnerability discovery and disclosure.

owncloud.org

0.001 Low

EPSS

Percentile

35.8%

JSON

Due to not properly checking the ownership of an calendar, an authenticated attacker is able to download calendars of other users via the “calid” GET parameter to export.php in /apps/calendar/

Affected Software

ownCloud Server < 8.1.1 (CVE-2015-6670)
ownCloud Server < 8.0.6 (CVE-2015-6670)
ownCloud Server < 7.0.8 (CVE-2015-6670)

Action Taken

The vulnerable component has been fixed.

Acknowledgements

The ownCloud team thanks the following people for their research and responsible disclosure of the above advisory:

Ralf Vroomen - Vulnerability discovery and disclosure.

CPENameOperatorVersion
owncloud serverlt7.0.8
owncloud serverlt8.0.6
owncloud serverlt8.1.1

Name	Operator	Version
owncloud server	lt	7.0.8
owncloud server	lt	8.0.6
owncloud server	lt	8.1.1

0.001 Low

EPSS

Percentile

35.8%

JSON

Related for OWNCLOUD:F82515614ACD68026D39DF17260B992F