6.5

CVE-2013-7344

Unspecified vulnerability in core/settings.php in ownCloud before 4.0.12 and 4.5.x before 4.5.6 allows remote authenticated users to execute arbitrary PHP code via unknown vectors.  NOTE: this issue was SPLIT from CVE-2013-0303 due to different affected versions.

Data is provided by the National Vulnerability Database (NVD)
OwncloudOwncloud Version <= 4.0.11
OwncloudOwncloud Server Version3.0.0
OwncloudOwncloud Server Version3.0.1
OwncloudOwncloud Server Version3.0.2
OwncloudOwncloud Server Version3.0.3
OwncloudOwncloud Server Version4.0.0
OwncloudOwncloud Server Version4.0.1
OwncloudOwncloud Server Version4.0.2
OwncloudOwncloud Server Version4.0.3
OwncloudOwncloud Server Version4.0.4
OwncloudOwncloud Server Version4.0.5
OwncloudOwncloud Server Version4.0.6
OwncloudOwncloud Server Version4.0.7
OwncloudOwncloud Server Version4.0.8
OwncloudOwncloud Server Version4.0.9
OwncloudOwncloud Server Version4.0.10
OwncloudOwncloud Server Version4.5.0
OwncloudOwncloud Server Version4.5.1
OwncloudOwncloud Server Version4.5.2
OwncloudOwncloud Server Version4.5.3
OwncloudOwncloud Server Version4.5.4
OwncloudOwncloud Server Version4.5.5
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.39% 0.572
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P