Description
A receiver of a federated share with access to the database with ownCloud version before 10.8 could update the permissions and therefore elevate their own permissions.
Remediation
References
Related Vulnerabilities
Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2021-39112)
Internet Information Services Other Vulnerability (CVE-1999-0281)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-5406)
Joomla Other Vulnerability (CVE-2006-1047)
Jenkins Missing Authorization Vulnerability (CVE-2021-21687)