Description

The user_openid app in ownCloud Server before 5.0.15 allows remote attackers to obtain access by leveraging an insecure OpenID implementation.

Remediation

References

CVE-2014-2048

Related Vulnerabilities

WebERP Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2018-20420)

WordPress Plugin WP Favorite Posts Cross-Site Scripting (1.6.5)

WordPress Plugin WP Hotel Booking Remote Code Execution (1.10.2)

MySQL CVE-2016-0668 Vulnerability (CVE-2016-0668)

IBM WebSEAL CVE-2019-4145 Vulnerability (CVE-2019-4145)

Severity

Critical

Classification

CVE-2014-2048 CWE-284 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities