Search Results (Refine Search)
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:owncloud:files_antivirus:0.8.0.1:*:*:*:*:*:*:*
- CPE Name Search: true
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2021-33828 |
The files_antivirus component before 1.0.0 for ownCloud mishandles the protection mechanism by which malicious files (that have been uploaded to a public share) are supposed to be deleted upon detection. Published: January 15, 2022; 4:15:08 PM -0500 |
V4.0:(not available) V3.1: 8.8 HIGH V2.0: 6.5 MEDIUM |
CVE-2021-33827 |
The files_antivirus component before 1.0.0 for ownCloud allows OS Command Injection via the administration settings. Published: January 15, 2022; 4:15:07 PM -0500 |
V4.0:(not available) V3.1: 7.2 HIGH V2.0: 9.0 HIGH |
CVE-2020-16144 |
When using an object storage like S3 as the file store, when a user creates a public link to a folder where anonymous users can upload files, and another user uploads a virus the files antivirus app would detect the virus but fails to delete it due to permission issues. This affects the files_antivirus component versions before 0.15.2 for ownCloud. Published: February 09, 2021; 1:15:18 PM -0500 |
V4.0:(not available) V3.1: 5.7 MEDIUM V2.0: 3.5 LOW |