Description

An issue was discovered in ownCloud before 10.4. An attacker can bypass authentication on a password-protected image by displaying its preview.

Remediation

References

CVE-2020-10254

Related Vulnerabilities

Squid Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') Vulnerability (CVE-2023-46847)

WordPress 4.4.x Denial of Service Vulnerability (4.4 - 4.4.14)

WordPress Plugin Download Theme Arbitrary Directory Download (1.0.2)

WordPress Plugin Two Factor Authentication Cross-Site Scripting (1.0.7)

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0791)

Severity

Medium

Classification

CVE-2020-10254 CWE-287 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities