CVE-2012-5336 vulnerability in ownCloud Products
Published on June 4, 2014
lib/base.php in ownCloud before 4.0.8 does not properly validate the user_id session variable, which allows remote authenticated users to read arbitrary files via vectors related to WebDAV.
Products Associated with CVE-2012-5336
stack.watch emails you whenever new vulnerabilities are published in ownCloud or Owncloud Server. Just hit a watch button to start following.
Exploit Probability
EPSS
0.16%
Percentile
36.91%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.