Description

The SFTP external storage driver (files_external) in ownCloud Server before 6.0.5 validates the RSA Host key after login, which allows remote attackers to obtain sensitive information by sniffing the network.

Remediation

References

CVE-2014-5341

Related Vulnerabilities

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-42113)

MediaWiki Other Vulnerability (CVE-2005-2215)

MySQL CVE-2023-22114 Vulnerability (CVE-2023-22114)

WordPress Plugin Relevanssi-A Better Search SQL Injection (3.6.0)

Moodle Other Vulnerability (CVE-2006-0147)

Severity

Medium

Classification

CVE-2014-5341 CWE-200

Tags

Missing Update Known Vulnerabilities