Lucene search
Ubuntu.comUB:CVE-2014-3838HistoryJun 04, 2014 - 12:00 a.m.
CVE-2014-3838
2014-06-0400:00:00
ubuntu.com
ubuntu.com
11
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
36.5%
ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not properly
check permissions, which allows remote authenticated users to read the
names of files of other users by leveraging access to multiple accounts.
Notes
| Author | Note |
|---|---|
| mdeslaur | owncloud packages in Ubuntu are now empty |
Related
owncloud
owncloud
Server: Improper authorization checks in core
2014-05-24 11:54:29
Improper authorization checks in core - ownCloud
2014-05-24 18:29:35
cve
cve
CVE-2014-3838
2014-06-04 14:55:04
prion
prion
Design/Logic Flaw
2014-06-04 14:55:00
cvelist
cvelist
CVE-2014-3838
2014-06-04 14:00:00
nvd
nvd
CVE-2014-3838
2014-06-04 14:55:04
openvas
openvas
ownCloud Multiple Vulnerabilities-04 (Jul 2014)
2014-07-03 00:00:00
CVSS2
4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
EPSS
0.001
Percentile
36.5%
Related for UB:CVE-2014-3838