CVE-2023-49103

Warnung

EPSS 94.33%
Veröffentlicht 21.11.2023 22:15:08
Zuletzt bearbeitet 20.12.2024 17:26:50
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

An issue was discovered in ownCloud owncloud/graphapi 0.2.x before 0.2.1 and 0.3.x before 0.3.1. The graphapi app relies on a third-party GetPhpInfo.php library that provides a URL. When this URL is accessed, it reveals the configuration details of the PHP environment (phpinfo). This information includes all the environment variables of the webserver. In containerized deployments, these environment variables may include sensitive data such as the ownCloud admin password, mail server credentials, and license key. Simply disabling the graphapi app does not eliminate the vulnerability. Additionally, phpinfo exposes various other potentially sensitive configuration details that could be exploited by an attacker to gather information about the system. Therefore, even if ownCloud is not running in a containerized environment, this vulnerability should still be a cause for concern. Note that Docker containers from before February 2023 are not vulnerable to the credential disclosure.

Betroffene Produkte Warnungen 1 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Owncloud ≫ Graph Api Version0.2.0

Owncloud ≫ Graph Api Version0.3.0

30.11.2023: CISA Known Exploited Vulnerabilities (KEV) Catalog

ownCloud graphapi Information Disclosure Vulnerability

Schwachstelle

ownCloud graphapi contains an information disclosure vulnerability that can reveal sensitive data stored in phpinfo() via GetPhpInfo.php, including administrative credentials.

Beschreibung

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	94.33%	0.999

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cve@mitre.org	10	3.9	6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

https://owncloud.com/security-advisories/disclosure-of-sensitive-credentials-and-configuration-in-containerized-deployments/

Vendor Advisory

https://owncloud.org/security

Product

https://nvd.nist.gov/vuln/detail/CVE-2023-49103

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-49103

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-49103

EUVD