Information disclosure in ownCloud Server

Published: 2020-02-28

Risk	Low
Patch available	YES
Number of vulnerabilities	1
CVE-ID	N/A
CWE-ID	CWE-648
Exploitation vector	Local network
Public exploit	N/A
Vulnerable software Subscribe	ownCloud Server Web applications / Modules and components for CMS
Vendor	ownCloud

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Incorrect Use of Privileged APIs

EUVDB-ID: #VU25684

Risk: Low

CVSSv3.1:

CVE-ID: N/A

CWE-ID:

Exploit availability:

Description

The vulnerability allows a remote attacker to gain access to all file-versions of a user.

The vulnerability exists due to the incorrect usage of privileged APIs. A remote authenticated attacker on the local network can access all versions of all files (even unshared) as soon as the owner of said files has at least one outgoing share with the attacker.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

ownCloud Server: 10.0.9 - 10.3.0

Fixed software versions

CPE2.3

cpe:2.3:a:owncloud:owncloud_server:10.3.0:*:*:*:*:*:*:*

External links

http://owncloud.org/security/advisories/access-to-all-file-versions-of-a-user-as-soon-as-he-has-one-share-with-the-attacker/

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?