Description

The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 allows remote authenticated users to execute arbitrary SMB commands via a ; (semicolon) character in a file.

Remediation

References

CVE-2015-4718

Related Vulnerabilities

OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-1551)

XWikiplatform Other Vulnerability (CVE-2024-46978)

Jboss EAP Improper Input Validation Vulnerability (CVE-2020-10693)

XWiki Improper Privilege Management Vulnerability (CVE-2023-26475)

Ext JS Server-Side Request Forgery (SSRF) Vulnerability (CVE-2007-6758)

Severity

Critical

Classification

CVE-2015-4718 CWE-138

Tags

Missing Update Known Vulnerabilities