CVE-2021-35946

CVE-2021-35946

EPSS 1.4%

A receiver of a federated share with access to the database with ownCloud version before 10.8 could update the permissions and therefore elevate their own permissions.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://doc.owncloud.com/server/admin_manual/release_notes.html https://owncloud.com/security-advisories/cve-2021-35946/