3 matches found
CVE-2014-3835
ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not check permissions to the filesexternal application, which allows remote authenticated users to add external storage via unspecified vectors...
CVE-2014-3835
The CVE-2014-3835 entry concerns ownCloud Server where the files_external application does not properly check user permissions. Affected are ownCloud Server < 5.0.16 and
Improper authorization checks in files_external - ownCloud
Due to not verifying whether an user has been granted access to add external storages an authenticated user could even mount external storage e.g. SMB/FTP/etc. without permission. Affected Software ownCloud Server 6.0.3 CVE-2014-3835 ownCloud Server 5.0.16 CVE-2014-3835 Action Taken We reviewed t...