Lucene search
K

6 matches found

securityvulns
securityvulns
added 2015/10/25 12:0 a.m.87 views

[SECURITY] [DSA 3373-1] owncloud security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq...

10CVSS3.2AI score0.2482EPSS
Exploits0
NVD
NVD
added 2015/10/21 6:59 p.m.21 views

CVE-2015-5954

The virtual filesystem in ownCloud Server before 6.0.9, 7.0.x before 7.0.7, and 8.0.x before 8.0.5 does not consider that NULL is a valid getPath return value, which allows remote authenticated users to bypass intended access restrictions and gain access to users files via a sharing link to a fil...

4CVSS6.2AI score0.01201EPSS
Exploits0References2
CVE
CVE
added 2015/10/21 6:0 p.m.78 views

CVE-2015-5954

The CVE-2015-5954 issue affects ownCloud Server: vulnerable versions include 6.0.x before 6.0.9, 7.0.x before 7.0.7, and 8.0.x before 8.0.5. The root cause is that the virtual filesystem does not treat NULL as a valid getPath return value in a sharing context, allowing remote authenticated users ...

4CVSS6.2AI score0.01201EPSS
Exploits0References2Affected Software2
Debian
Debian
added 2015/10/18 1:49 p.m.29 views

[SECURITY] [DSA 3373-1] owncloud security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq -...

10CVSS3.2AI score0.2482EPSS
Exploits0
Debian
Debian
added 2015/10/18 1:49 p.m.26 views

[SECURITY] [DSA 3373-1] owncloud security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3373-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 18, 2015 https://www.debian.org/security/faq -...

10CVSS6.8AI score0.2482EPSS
Exploits0
OwnCloud
OwnCloud
added 2015/08/03 6:51 p.m.35 views

Disclosure of users files when deleting parent folders of shared files - ownCloud

Due to a common incorrect usage of the getPath function of the ownCloud virtual filesystem multiple security issues occurred. Especially the function may return null in case the specified file does not exist anymore. When passing the result of getPath in combination with null to functions that...

4CVSS6.5AI score0.01201EPSS
Exploits0Affected Software1
Rows per page
Query Builder