CVE-2021-35948 is a vulnerability in ownCloud
Published on September 7, 2021
Session fixation on password protected public links in the ownCloud Server before 10.8.0 allows an attacker to bypass the password protection when they can force a target client to use a controlled cookie.
Products Associated with CVE-2021-35948
Want to know whenever a new CVE is published for ownCloud? stack.watch will email you.
Exploit Probability
EPSS
0.17%
Percentile
38.26%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.