CVE-2013-2047
2.1
Vector
AV:L/AC:L/Au:N/C:N/I:P/A:N
Exploitability: 3.9 / Impact: 2.9
Source: NVD
Description
The login page (aka index.php) in ownCloud before 5.0.6 does not disable the autocomplete setting for the password parameter, which makes it easier for physically proximate attackers to guess the password.
Affected (6)
Products: Owncloud: Owncloud, Owncloud Server
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Up to 5.0.5 | |
| Version 5.0.0 |
Related CWEs
References (2)
Source: secalert@redhat.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Timeline
No history available yet.