Описание
ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| owncloud-client | fixed | 2.11.0.8354+dfsg-1 | package | |
| owncloud-client | no-dsa | buster | package | |
| owncloud-client | not-affected | stretch | package |
Примечания
https://owncloud.com/security-advisories/cve-2021-44537/
Связанные уязвимости
CVSS3: 7.8
ubuntu
около 4 лет назад
ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.
CVSS3: 7.8
nvd
около 4 лет назад
ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.
CVSS3: 7.8
github
около 4 лет назад
ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.