exploitDog

CVE-2014-5341

Опубликовано: 04 фев. 2015

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

The SFTP external storage driver (files_external) in ownCloud Server before 6.0.5 validates the RSA Host key after login, which allows remote attackers to obtain sensitive information by sniffing the network.

Ссылки

https://owncloud.org/security/advisory/?id=oc-sa-2014-019
Vendor Advisory
https://owncloud.org/security/advisory/?id=oc-sa-2014-019
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:*:*:*

Версия до 6.0.4 (включая)

EPSS

Процентиль: 48%

0.0025

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2014-5341

debian

около 11 лет назад

The SFTP external storage driver (files_external) in ownCloud Server b ...

GHSA-4hcw-c7xh-xh77

github

больше 3 лет назад

The SFTP external storage driver (files_external) in ownCloud Server before 6.0.5 validates the RSA Host key after login, which allows remote attackers to obtain sensitive information by sniffing the network.

EPSS

Процентиль: 48%

0.0025

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-200