| ID |
CVE-2014-3838
|
| Sažetak |
ownCloud Server before 5.0.16 and 6.0.x before 6.0.3 does not properly check permissions, which allows remote authenticated users to read the names of files of other users by leveraging access to multiple accounts. |
| Reference |
|
| CVSS |
| Base: | 4.0 |
| Impact: | 2.9 |
| Exploitability: | 8.0 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| NETWORK |
LOW |
SINGLE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| PARTIAL |
NONE |
NONE |
|
| CVSS vektor |
AV:N/AC:L/Au:S/C:P/I:N/A:N |
| Zadnje važnije ažuriranje |
05-06-2014 - 17:37 |
| Objavljeno |
04-06-2014 - 14:55 |
