CVE-2023-49105

CVSS 9.8 CRITICALEPSS 11.1%

An issue was discovered in ownCloud owncloud/core before 10.13.1. An attacker can access, modify, or delete any file without authentication if the username of a victim is known, and the victim has no signing-key configured. This occurs because pre-signed URLs can be accepted even when no signing-key is configured for the owner of the files. The earliest affected version is 10.6.0.

CVSS:3.1/AC:L/AV:N/A:H/C:H/I:H/PR:N/S:U/UI:N

Affected products

n/a · n/a

public PoCs found — 1

githubgithub.com/ambionics/owncloud-exploits★ 38

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://owncloud.com/security-advisories/webdav-api-authentication-bypass-using-pre-signed-urls/https://owncloud.org/security