Description

The external SMB storage driver in ownCloud Server before 6.0.8, 7.0.x before 7.0.6, and 8.0.x before 8.0.4 allows remote authenticated users to execute arbitrary SMB commands via a ; (semicolon) character in a file.

Remediation

References

CVE-2015-4718

Related Vulnerabilities

Oracle JRE CVE-2013-0441 Vulnerability (CVE-2013-0441)

WordPress Plugin Open Graph for Facebook, Google+ and Twitter Card Tags Unspecified Vulnerability (2.2.4.1)

Joomla! Core 3.0.x Information Disclosure (3.0.0 - 3.0.2)

WordPress Plugin Bitcoin/AltCoin Payment Gateway for WooCommerce & Multivendor store/shop Cross-Site Scripting (1.6.0)

Apache HTTP Server Use of Incorrectly-Resolved Name or Reference Vulnerability (CVE-2019-0220)

Severity

Critical

Classification

CVE-2015-4718 CWE-138

Tags

Missing Update Known Vulnerabilities