Description
Directory traversal vulnerability in the routing component in ownCloud Server before 7.0.6 and 8.0.x before 8.0.4, when running on Windows, allows remote attackers to reinstall the application or execute arbitrary code via unspecified vectors.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/76159
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2015/dsa-3373
Vendor Advisory x_refsource_confirm
https://owncloud.org/security/advisory/?id=oc-sa-2015-006
Scores
EPSS
0.1952
EPSS Percentile
95.5%
Details
CWE
CWE-22
Status
published
Products (5)
microsoft/windows
owncloud/owncloud
< 7.0.5
owncloud/owncloud_server
8.0.0
owncloud/owncloud_server
8.0.2
owncloud/owncloud_server
8.0.3
Published
Oct 21, 2015
Tracked Since
Feb 18, 2026