Owncloud Luki w zabezpieczeniach

Oś czasu

Ostatni rok

Wersja

4.0.043
4.0.142
4.0.241
5.0.041
4.0.440

Przeciwdziałanie

Official Fix131
Temporary Fix0
Workaround0
Unavailable0
Not Defined5

Wykorzystywanie

High0
Functional0
Proof-of-Concept2
Unproven0
Not Defined134

Wektor dostępu

Not Defined0
Physical0
Local2
Adjacent5
Network129

Uwierzytelnianie

Not Defined0
High0
Low63
None73

Interakcja z użytkownikiem

Not Defined0
Required57
None79

C3BM Index

Ostatni rok

CVSSv3 Base

≤10
≤20
≤30
≤414
≤546
≤635
≤725
≤814
≤92
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤416
≤550
≤651
≤715
≤82
≤92
≤100

VulDB

≤10
≤20
≤31
≤419
≤544
≤630
≤726
≤814
≤92
≤100

NVD

≤10
≤20
≤30
≤42
≤56
≤612
≤78
≤81
≤94
≤102

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Sprzedawca

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k18
<2k64
<5k54
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj dzisiaj

<1k136
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Wykorzystaj wielkość rynku

Ostatni rok

🔴 CTI Zajęcia

Affected Versions (145): 0.15, 0.15.1, 1, 2.0, 2.1, 2.2, 2.2.1, 2.2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 3, 3.0.1, 3.0.2, 3.0.3, 3.4, 3.4.1, 3.4.2, 3.4.3, 4, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6, 4.0.7, 4.0.8, 4.0.9, 4.0.11, 4.0.12, 4.0.13, 4.0.14, 4.0.15, 4.0.16, 4.5, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 4.5.5, 4.5.6, 4.5.7, 4.5.8, 4.5.9, 4.5.11, 4.5.12, 4.5.13, 5, 5.0.1, 5.0.2, 5.0.3, 5.0.4, 5.0.5, 5.0.6, 5.0.7, 5.0.8, 5.0.9, 5.0.11, 5.0.12, 5.0.13, 5.0.14, 5.0.15, 5.0.16, 5.0.17, 5.0.18, 6, 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, 6.0.7, 6.0.8, 7, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.0.11, 8, 8.0.1, 8.0.2, 8.0.3, 8.0.4, 8.0.5, 8.0.6, 8.0.7, 8.0.8, 8.0.9, 8.1, 8.1.1, 8.1.2, 8.1.3, 8.1.4, 8.1.5, 8.1.6, 8.1.7, 8.1.8, 8.1.9, 8.2, 8.2.1, 8.2.2, 8.2.3, 8.2.4, 8.2.5, 8.2.6, 8.2.7, 8.2.8, 8.2.9, 8.2.11, 9, 9.0.1, 9.0.2, 9.0.3, 9.0.4, 9.0.5, 9.0.6, 9.0.7, 9.0.8, 9.0.9, 9.1, 9.1.1, 9.1.2, 9.1.3, 9.1.4, 9.1.5, 10.0, 10.0.1, 10.1, 10.2, 10.3, 10.4, 10.5, 10.6, 10.7

Typ oprogramowania: Cloud Software

OpublikowanoBaseTempSłaby punkt0dayTodayExpPrzCTICVE
2021-09-085.55.3ownCloud Federated Share privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-35946
2021-05-214.34.3ownCloud API Endpoint information disclosure$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2021-29659
2021-02-265.55.3ownCloud Client DLL privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-28646
2021-02-195.04.8ownCloud Server Request information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-36252
2021-02-193.93.7ownCloud Server Share denial of service$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-36251
2021-02-195.65.4ownCloud Server File Type information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-36249
2021-02-196.15.9ownCloud Preview weak authentication$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-10254
2021-02-197.36.9ownCloud external privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-10252
2021-02-106.86.5ownCloud privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.08CVE-2020-28645
2021-02-103.93.7ownCloud API Endpoint core cross site request forgery$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2020-28644
2021-02-105.14.9ownCloud File Store files_antivirus privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2020-16144
2021-01-164.84.6ownCloud Forgot Password cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.07CVE-2020-16255
2019-12-175.75.7ownCloud sharing.php cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2013-0202
2019-11-224.84.8ownCloud new.php cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2013-0203
2018-03-278.58.2ownCloud Server user_openid App privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2014-2048
2018-03-204.84.4ownCloud File Upload cross site scripting$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.09CVE-2014-1665
2017-07-175.04.8ownCloud Server Shared Folders privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2017-9340
2017-07-175.35.1ownCloud Server Calendar Share information disclosure$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2017-9339
2017-07-174.44.3ownCloud Server Search Module cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2017-9338
2017-07-175.24.9ownCloud Server Error Page cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2017-8896
2017-03-285.44.8ownCloud Server Dav App privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2016-9468
2017-03-285.44.8ownCloud Server Files App privilege escalation$0-$5k$0-$5kNot DefinedOfficial Fix0.02CVE-2016-9467
2017-03-285.24.6ownCloud Server Gallery Application Reflected cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.01CVE-2016-9466
2017-03-284.43.9ownCloud Server CardDAV Image Export Stored cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.07CVE-2016-9465
2017-03-287.76.7ownCloud Server SMB User Authentication weak authentication$0-$5k$0-$5kNot DefinedOfficial Fix0.07CVE-2016-9463

111 więcej wpisów nie jest pokazywanych

Do you want to use VulDB in your project?

Use the official API to access entries easily!