CVE Vulnerabilities

CVE-2014-9048

Published: Feb 04, 2015 | Modified: Feb 05, 2015
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

The documents application in ownCloud Server 6.x before 6.0.6 and 7.x before 7.0.3 allows remote attackers to bypass the password-protection for shared files via the API.

Affected Software

Name Vendor Start Version End Version
Owncloud Owncloud * 5.0.17 (including)
Owncloud Owncloud 5.0.0 (including) 5.0.0 (including)
Owncloud Owncloud 5.0.1 (including) 5.0.1 (including)
Owncloud Owncloud 5.0.2 (including) 5.0.2 (including)
Owncloud Owncloud 5.0.3 (including) 5.0.3 (including)
Owncloud Owncloud 5.0.4 (including) 5.0.4 (including)
Owncloud Owncloud 5.0.5 (including) 5.0.5 (including)
Owncloud Owncloud 5.0.6 (including) 5.0.6 (including)
Owncloud Owncloud 5.0.7 (including) 5.0.7 (including)
Owncloud Owncloud 5.0.8 (including) 5.0.8 (including)
Owncloud Owncloud 5.0.9 (including) 5.0.9 (including)
Owncloud Owncloud 5.0.10 (including) 5.0.10 (including)
Owncloud Owncloud 5.0.11 (including) 5.0.11 (including)
Owncloud Owncloud 5.0.12 (including) 5.0.12 (including)
Owncloud Owncloud 5.0.13 (including) 5.0.13 (including)
Owncloud Owncloud 5.0.14 (including) 5.0.14 (including)
Owncloud Owncloud 5.0.14-a (including) 5.0.14-a (including)
Owncloud Owncloud 5.0.15 (including) 5.0.15 (including)
Owncloud Owncloud 5.0.16 (including) 5.0.16 (including)
Owncloud Owncloud 6.0.0 (including) 6.0.0 (including)
Owncloud Owncloud 6.0.1 (including) 6.0.1 (including)
Owncloud Owncloud 6.0.2 (including) 6.0.2 (including)
Owncloud Owncloud 6.0.3 (including) 6.0.3 (including)
Owncloud Owncloud 6.0.4 (including) 6.0.4 (including)
Owncloud Owncloud 6.0.5 (including) 6.0.5 (including)
Owncloud Owncloud 7.0.0 (including) 7.0.0 (including)
Owncloud Owncloud 7.0.1 (including) 7.0.1 (including)
Owncloud Owncloud 7.0.2 (including) 7.0.2 (including)

References