CVE-2013-1963
4.0
Vector
AV:N/AC:L/Au:S/C:P/I:N/A:N
Exploitability: 8.0 / Impact: 2.9
Source: NVD
Description
The contacts application in ownCloud before 4.5.10 and 5.x before 5.0.5 does not properly check the ownership of contacts, which allows remote authenticated users to download arbitrary contacts via unspecified vectors.
Affected (15)
Products: Owncloud: Owncloud, Owncloud Server
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 4.5.9 | |
| Version 4.5.0 |
Related CWEs
References (2)
Source: secalert@redhat.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.