← back
CVE-2020-10254

CVE-2020-10254

EPSS 1.6%
An issue was discovered in ownCloud before 10.4. An attacker can bypass authentication on a password-protected image by displaying its preview.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.hacktivesecurity.com/index.php?controller=post&action=view&id_post=44https://owncloud.com/security-advisories/public-link-password-bypass-via-image-previews/https://owncloud.org/changelog/server/