Owncloud Vulnerabilities

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need an additional purchase to unlock this view to get access to more details of real data.

Version

4.0.0	48
4.0.1	48
4.0.2	48
4.0.3	46
4.0.4	46

Remediation

Official Fix	136
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	4

Exploitability

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	140

Access Vector

Not Defined	0
Physical	0
Local	2
Adjacent	6
Network	132

Authentication

Not Defined	0
High	0
Low	56
None	84

User Interaction

Not Defined	0
Required	64
None	76

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	14
≤5	46
≤6	40
≤7	28
≤8	12
≤9	0
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	14
≤5	54
≤6	58
≤7	14
≤8	0
≤9	0
≤10	0

VulDB

≤1	0
≤2	0
≤3	2
≤4	20
≤5	42
≤6	34
≤7	30
≤8	12
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	12
≤7	12
≤8	0
≤9	0
≤10	0

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Vendor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	28
<2k	60
<5k	52
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit Today

<1k	140
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Exploit Market Volume

🔴 CTI Activities

Affected Versions (162): 0.15, 0.15.1, 1, 2.0, 2.1, 2.2, 2.2.1, 2.2.2, 2.3, 2.4, 2.5, 2.6, 2.7, 2.8, 2.9, 2.10, 2.11, 2.12, 2.13, 2.14, 2.15, 2.16, 2.17, 2.18, 2.19, 2.20, 3, 3.0.1, 3.0.2, 3.0.3, 3.4, 3.4.1, 3.4.2, 3.4.3, 4, 4.0.1, 4.0.2, 4.0.3, 4.0.4, 4.0.5, 4.0.6, 4.0.7, 4.0.8, 4.0.9, 4.0.11, 4.0.12, 4.0.13, 4.0.14, 4.0.15, 4.0.16, 4.5, 4.5.1, 4.5.2, 4.5.3, 4.5.4, 4.5.5, 4.5.6, 4.5.7, 4.5.8, 4.5.9, 4.5.11, 4.5.12, 4.5.13, 5, 5.0.1, 5.0.2, 5.0.3, 5.0.4, 5.0.5, 5.0.6, 5.0.7, 5.0.8, 5.0.9, 5.0.11, 5.0.12, 5.0.13, 5.0.14, 5.0.15, 5.0.16, 5.0.17, 5.0.18, 6, 6.0, 6.0.1, 6.0.2, 6.0.3, 6.0.4, 6.0.5, 6.0.6, 6.0.7, 6.0.8, 7, 7.0.1, 7.0.2, 7.0.3, 7.0.4, 7.0.5, 7.0.6, 7.0.7, 7.0.8, 7.0.9, 7.0.11, 8, 8.0.1, 8.0.2, 8.0.3, 8.0.4, 8.0.5, 8.0.6, 8.0.7, 8.0.8, 8.0.9, 8.1, 8.1.1, 8.1.2, 8.1.3, 8.1.4, 8.1.5, 8.1.6, 8.1.7, 8.1.8, 8.1.9, 8.2, 8.2.1, 8.2.2, 8.2.3, 8.2.4, 8.2.5, 8.2.6, 8.2.7, 8.2.8, 8.2.9, 8.2.11, 9, 9.0.1, 9.0.2, 9.0.3, 9.0.4, 9.0.5, 9.0.6, 9.0.7, 9.0.8, 9.0.9, 9.1, 9.1.1, 9.1.2, 9.1.3, 9.1.4, 9.1.5, 10.0, 10.0.1, 10.1, 10.2, 10.3, 10.4, 10.5, 10.6, 10.7, 10.8, 10.9, 10.10, 10.11

Software Type: Cloud Software

Published	Base	Temp	Vulnerability	0day	Today	Exp	Rem	CTI	CVE
11/11/2022	4.6	4.6	ownCloud Server E-Mail Message Remote Code Execution	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-43679
06/09/2022	3.5	3.4	ownCloud information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2022-31649
04/07/2022	5.3	5.3	ownCloud access control	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2022-25339
04/07/2022	4.1	3.9	ownCloud access control	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2022-25338
09/08/2021	5.5	5.3	ownCloud Federated Share permission	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-35946
05/21/2021	4.3	4.3	ownCloud API Endpoint information disclosure	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2021-29659
02/26/2021	5.5	5.3	ownCloud Client DLL injection	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-28646
02/19/2021	5.0	4.8	ownCloud Server Request information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2020-36252
02/19/2021	3.9	3.7	ownCloud Server Share denial of service	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-36251
02/19/2021	5.6	5.4	ownCloud Server File Type information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-36249
02/19/2021	6.1	5.9	ownCloud Preview improper authentication	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-10254
02/19/2021	7.3	6.9	ownCloud external server-side request forgery	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-10252
02/10/2021	6.8	6.5	ownCloud input validation	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-28645
02/10/2021	3.9	3.7	ownCloud API Endpoint core cross-site request forgery	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-28644
02/10/2021	5.1	4.9	ownCloud File Store files_antivirus permission	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2020-16144
01/16/2021	4.8	4.6	ownCloud Forgot Password cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2020-16255
12/17/2019	5.7	5.7	ownCloud sharing.php cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2013-0202
11/22/2019	4.8	4.8	ownCloud new.php cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.02	CVE-2013-0203
03/27/2018	8.5	8.4	ownCloud Server user_openid App access control	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2014-2048
03/20/2018	4.8	4.4	ownCloud File Upload cross site scripting	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.03	CVE-2014-1665
07/17/2017	5.0	4.8	ownCloud Server Shared Folders access control	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2017-9340
07/17/2017	5.3	5.1	ownCloud Server Calendar Share information disclosure	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2017-9339
07/17/2017	4.4	4.3	ownCloud Server Search Module cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2017-9338
07/17/2017	5.2	4.9	ownCloud Server Error Page cross site scripting	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2017-8896
03/28/2017	5.4	5.0	ownCloud Server Dav App access control	$0-$5k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2016-9468