CVE-2020-36252

Опубликовано: 19 фев. 2021

Источник: debian

EPSS Низкий

Описание

ownCloud Server 10.x before 10.3.1 allows an attacker, who has one outgoing share from a victim, to access any version of any file by sending a request for a predictable ID number.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
owncloud	removed			package

EPSS

Процентиль: 25%

0.00087

Низкий

Связанные уязвимости

CVE-2020-36252

CVSS3: 6.8

nvd

почти 5 лет назад

ownCloud Server 10.x before 10.3.1 allows an attacker, who has one outgoing share from a victim, to access any version of any file by sending a request for a predictable ID number.

GHSA-gc7p-gg9x-38qq

CVSS3: 5.7

github

больше 3 лет назад

ownCloud Server 10.x before 10.3.1 allows an attacker, who has one outgoing share from a victim, to access any version of any file by sending a request for a predictable ID number.

EPSS

Процентиль: 25%

0.00087

Низкий