Vulnerability Manager Plus

update owncloud 9.1.1 to latest version

Risk Information

Base Score

8.1

MODERATE

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

3.864%

CVE Information

Source CVE
CVE-2016-9463

Associated CVE
CVE-2016-9463
CVE-2016-9465
CVE-2016-9467
CVE-2016-9468
CVE-2016-9466

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
339158

Patch Description
ownCloud (5.3.1)

References

https://github.com/nextcloud/apps/commit/b85ace6840b8a6704641086bc3b8eb8e81cb2274
https://github.com/nextcloud/apps/commit/decb91fd31f4ffab191cbf09ce4e5c55c67a4087
https://github.com/owncloud/apps/commit/16cbccfc946c8711721fa684d78135ca1fb64791
https://github.com/owncloud/apps/commit/5d47e7b52646cf79edadd78ce10c754290cbb732
https://github.com/owncloud/apps/commit/a0e07b7ddd5a5fd850a6e07f8457d05b76a300b3
https://hackerone.com/reports/148151
https://nextcloud.com/security/advisory/?id=nc-sa-2016-006
https://rhinosecuritylabs.com/2016/10/operation-ownedcloud-exploitation-post-exploitation-persistence/
https://github.com/nextcloud/server/commit/68ab8325c799d20c1fb7e98d670785176590e7d0
https://github.com/owncloud/core/commit/6bf3be3877d9d9fda9c66926fe273fe79cbaf58e
https://github.com/owncloud/core/commit/b5a5be24c418033cb2ef965a4f3f06b7b4213845
https://hackerone.com/reports/163338
https://nextcloud.com/security/advisory/?id=nc-sa-2016-008
https://github.com/nextcloud/gallery/commit/f9ef505c1d60c9041e251682e0f6b3daad952d58
https://github.com/owncloud/gallery/commit/b3b3772fb9bec61ba10d357bef42b676fa474eee
https://github.com/owncloud/gallery/commit/dc4887f1afcc0cf304f4a0694075c9364298ad8a
https://hackerone.com/reports/165686
https://nextcloud.com/security/advisory/?id=nc-sa-2016-009
https://github.com/nextcloud/server/commit/1352365e8bf5ea49da3dc82b1ccf7ddb659ae960
https://github.com/nextcloud/server/commit/5dd211cc8845fd4533966bf8d7a7f2a6359ea013
https://github.com/nextcloud/server/commit/778ae8abd54c378fc4781394bbedc7a2ee3095e1
https://github.com/nextcloud/server/commit/c3ae21fef2880c9fe44e8fdbe1262ac7f9716f14
https://github.com/nextcloud/server/commit/df50e967dbd27b13875625b7dd3189294619b071
https://github.com/nextcloud/server/commit/ed0f0db5fa0aff04594cb0f973ae4c22b17a175a
https://github.com/owncloud/core/commit/768221fcf3c526c65d85f62b0efa2da5ea00bf2d
https://github.com/owncloud/core/commit/e7acbce27fa0ef1c6fe216ca67c72d86484919a4
https://hackerone.com/reports/154827
https://nextcloud.com/security/advisory/?id=nc-sa-2016-010
https://github.com/nextcloud/server/commit/7350e13113c8ed484727a5c25331ec11d4d59f5f
https://github.com/nextcloud/server/commit/a4cfb3ddc1f4cdb585e05c0e9b2f8e52a0e2ee3e
https://github.com/owncloud/core/commit/96b8afe48570bc70088ccd8f897e9d71997d336e
https://github.com/owncloud/core/commit/bcc6c39ad8c22a00323a114e9c1a0a834983fb35
https://hackerone.com/reports/149798
https://nextcloud.com/security/advisory/?id=nc-sa-2016-011
https://owncloud.org/download/