ownCloud owncloud/client before 2.9.2 allows Resource Injection by a server into the desktop client via a URL, leading to remote code execution.
References
Configurations
History
07 Nov 2023, 03:39
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
21 Sep 2022, 18:19
Type | Values Removed | Values Added |
---|---|---|
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TSZNJFGM66LJONBQFYYQL4GD5XI5QO2Y/ - Mailing List, Third Party Advisory | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/STKTSNYBZPXBGJOCDAMCZPRXJLAYGDMO/ - Mailing List, Third Party Advisory | |
First Time |
Owncloud owncloud Desktop Client
Fedoraproject Fedoraproject fedora |
|
CPE | cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:* cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_desktop_client:*:*:*:*:*:*:*:* |
15 Aug 2022, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
13 Aug 2022, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Jan 2022, 19:26
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:*:*:* | |
References | (MISC) https://owncloud.com/security-advisories/cve-2021-44537/ - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 7.8 |
First Time |
Owncloud
Owncloud owncloud |
|
CWE | CWE-74 |
15 Jan 2022, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-01-15 21:15
Updated : 2023-12-10 14:09
NVD link : CVE-2021-44537
Mitre link : CVE-2021-44537
CVE.ORG link : CVE-2021-44537
JSON object : View
Products Affected
fedoraproject
- fedora
owncloud
- owncloud_desktop_client
CWE
CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')