Description ownCloud owncloud/android before 2.20 has Incorrect Access Control for physically proximate attackers. Remediation References CVE-2022-25338 Related Vulnerabilities WordPress Plugin Hotjar Connecticator Cross-Site Scripting (1.1.1) WordPress Plugin MP3-jPlayer Local File Disclosure (2.3) WordPress Plugin BuddyPress Security Bypass (6.3.0) WordPress Plugin Form Vibes-Database Manager for Forms SQL Injection (1.4.5) MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9406) Severity Medium Classification CVE-2022-25338 CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities