The user_openid app in ownCloud Server before 5.0.15 allows remote attackers to obtain access by leveraging an insecure OpenID implementation.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/91973 | Third Party Advisory VDB Entry |
https://owncloud.org/security/advisories/insecure-openid-implementation/ | Vendor Advisory |
Configurations
History
No history.
Information
Published : 2018-03-26 18:29
Updated : 2018-06-13 15:05
NVD link : CVE-2014-2048
Mitre link : CVE-2014-2048
CVE.ORG link : CVE-2014-2048
JSON object : View
Products Affected
owncloud
- owncloud
CWE
CWE-284
Improper Access Control