owncloud

168 tracked vulnerabilities.

CVE-2016-7419 MEDIUM
Nextcloud Server < 9.0.52 and ownCloud Server < 9.0.4 - Authenticated Stored Cross-Site Scripting via Directory Name
Sep 17, 2016
CVSS 5.4
EPSS 0.00
CVE-2016-1501 MEDIUM
ownCloud Server <8.0.9 & <8.1.4 - Info Disclosure
Jan 08, 2016
CVSS 4.3
EPSS 0.00
CVE-2016-1500 LOW
ownCloud Server <7.0.12, 8.0.x<8.0.10, 8.1.x<8.1.5, 8.2.x<8.2.2 - I...
Jan 08, 2016
CVSS 3.1
EPSS 0.00
CVE-2016-1499 HIGH
ownCloud Server <8.0.10, <8.1.x-8.1.5, <8.2.x-8.2.2 - Info Disclosure
Jan 08, 2016
CVSS 8.5
EPSS 0.01
CVE-2016-1498 MEDIUM
ownCloud Server <7.0.12-8.2.2 - XSS
Jan 08, 2016
CVSS 6.1
EPSS 0.00
CVE-2015-4715 MEDIUM
ownCloud Server <6.0.8, <7.0.6, <8.0.4 - Info Disclosure
Feb 17, 2020
CVSS 4.9
EPSS 0.01
CVE-2015-5955
ownCloud iOS <3.4.4 - Info Disclosure
Oct 29, 2015
EPSS 0.00
CVE-2015-7699
ownCloud Server <7.0.9, <8.0.x <8.0.7, <8.1.x <8.1.2 - RCE
Oct 26, 2015
EPSS 0.02
CVE-2015-7298
ownCloud Desktop Client <2.0.1 - Info Disclosure
Oct 26, 2015
EPSS 0.00
CVE-2015-6670
ownCloud Server <7.0.8, <8.0.6, <8.1.1 - Info Disclosure
Oct 26, 2015
EPSS 0.00
CVE-2015-6500
ownCloud Server < 8.0.6 and 8.1.x < 8.1.1 - Authenticated Directory Traversal via dir Parameter
Oct 26, 2015
EPSS 0.01
CVE-2015-4456
ownCloud Desktop Client <1.8.2 - Info Disclosure
Oct 26, 2015
EPSS 0.00
CVE-2015-7698
icewind1991 SMB <1.0.3 - Command Injection
Oct 21, 2015
EPSS 0.01
CVE-2015-5954
ownCloud Server <6.0.9, 7.0.x <7.0.7, 8.0.x <8.0.5 - Privilege Esca...
Oct 21, 2015
EPSS 0.00
CVE-2015-4718
ownCloud Server < 6.0.8, 7.0.x < 7.0.6, 8.0.x < 8.0.4 - Authenticated OS Command Injection via SMB Storage Driver
Oct 21, 2015
EPSS 0.01
CVE-2015-4717
ownCloud Server < 6.0.8, 7.0.x < 7.0.6, 8.0.x < 8.0.4 - Denial of Service via Crafted Endpoint File Names
Oct 21, 2015
EPSS 0.01
CVE-2015-4716
ownCloud Server < 7.0.6 and 8.0.x < 8.0.4 - Path Traversal
Oct 21, 2015
EPSS 0.20
CVE-2015-5953
ownCloud Server <7.0.5, <8.0.4 - XSS
Oct 21, 2015
EPSS 0.00
CVE-2015-3013
ownCloud Server <5.0.19,6.x<6.0.7,7.x<7.0.5 - Auth Bypass
May 08, 2015
EPSS 0.00
CVE-2015-3011
ownCloud Server <5.0.19, <6.0.7, <7.0.5 - XSS
May 08, 2015
EPSS 0.00
CVE-2014-2052 CRITICAL
Zend Framework <6.0.2 - Info Disclosure
Feb 11, 2020
CVSS 9.8
EPSS 0.01
CVE-2014-2050 MEDIUM
owncloud < 5.0.15 and 6.0.0-6.0.2 - Cross-Site Request Forgery via Host Header
Jan 23, 2020
CVSS 6.5
EPSS 0.00
CVE-2014-2048 CRITICAL
ownCloud Server <5.0.15 - Info Disclosure
Mar 26, 2018
CVSS 9.8
EPSS 0.01
CVE-2014-1665 MEDIUM
owncloud < 6.0.1 - Authenticated Stored Cross-Site Scripting via Uploaded Filename
Mar 20, 2018
CVSS 5.4
EPSS 0.00
CVE-2014-9049
ownCloud Server <6.0.6, <7.0.3 - Info Disclosure
Feb 04, 2015
EPSS 0.00
Products
owncloud 116 owncloud_server 108 owncloud_client 7 owncloud_desktop_client 5 files_antivirus 3 OwnCloud 1 file_firewall 1 graph_api 1 guests 1 oauth2 1 smb 1 user_ldap 1
Quick Filters
Critical CVEs With Exploits In CISA KEV