Medium Severity Vulnerabilities

Vulnerability Name	CVE CWE	CWE	Severity
ownCloud Improper Authentication Vulnerability (CVE-2014-9043)	CVE-2014-9043 CWE-287	CWE-287	Medium
ownCloud Improper Authentication Vulnerability (CVE-2014-9045)	CVE-2014-9045 CWE-287	CWE-287	Medium
ownCloud Improper Authentication Vulnerability (CVE-2020-10254)	CVE-2020-10254 CWE-287	CWE-287	Medium
ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0204)	CVE-2013-0204 CWE-94	CWE-94	Medium
ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-1850)	CVE-2013-1850 CWE-94	CWE-94	Medium
ownCloud Improper Input Validation Vulnerability (CVE-2012-2270)	CVE-2012-2270 CWE-20	CWE-20	Medium
ownCloud Improper Input Validation Vulnerability (CVE-2012-5336)	CVE-2012-5336 CWE-20	CWE-20	Medium
ownCloud Improper Input Validation Vulnerability (CVE-2012-5610)	CVE-2012-5610 CWE-20	CWE-20	Medium
ownCloud Improper Input Validation Vulnerability (CVE-2013-1939)	CVE-2013-1939 CWE-20	CWE-20	Medium
ownCloud Improper Input Validation Vulnerability (CVE-2013-2044)	CVE-2013-2044 CWE-20	CWE-20	Medium
ownCloud Improper Input Validation Vulnerability (CVE-2014-2585)	CVE-2014-2585 CWE-20	CWE-20	Medium
ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-2039)	CVE-2013-2039 CWE-22	CWE-22	Medium
ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-2085)	CVE-2013-2085 CWE-22	CWE-22	Medium
ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-4929)	CVE-2014-4929 CWE-22	CWE-22	Medium
ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-24804)	CVE-2023-24804 CWE-22	CWE-22	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2269)	CVE-2012-2269 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2398)	CVE-2012-2398 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4394)	CVE-2012-4394 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4395)	CVE-2012-4395 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4396)	CVE-2012-4396 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4397)	CVE-2012-4397 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5056)	CVE-2012-5056 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5606)	CVE-2012-5606 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5608)	CVE-2012-5608 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5666)	CVE-2012-5666 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0201)	CVE-2013-0201 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0202)	CVE-2013-0202 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0203)	CVE-2013-0203 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0298)	CVE-2013-0298 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1890)	CVE-2013-1890 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1942)	CVE-2013-1942 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1967)	CVE-2013-1967 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-1665)	CVE-2014-1665 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2057)	CVE-2014-2057 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3832)	CVE-2014-3832 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3833)	CVE-2014-3833 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-1498)	CVE-2016-1498 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7419)	CVE-2016-7419 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9459)	CVE-2016-9459 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9465)	CVE-2016-9465 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9466)	CVE-2016-9466 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-8896)	CVE-2017-8896 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9338)	CVE-2017-9338 CWE-707	CWE-707	Medium
ownCloud Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2015-3013)	CVE-2015-3013 CWE-138	CWE-138	Medium
ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-1893)	CVE-2013-1893 CWE-138	CWE-138	Medium
ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-2045)	CVE-2013-2045 CWE-138	CWE-138	Medium
ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-2046)	CVE-2013-2046 CWE-138	CWE-138	Medium
ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-23948)	CVE-2023-23948 CWE-138	CWE-138	Medium
ownCloud Improper Privilege Management Vulnerability (CVE-2020-36251)	CVE-2020-36251 CWE-269	CWE-269	Medium
ownCloud Incorrect Authorization Vulnerability (CVE-2021-29659)	CVE-2021-29659 CWE-863	CWE-863	Medium
ownCloud Incorrect Authorization Vulnerability (CVE-2021-35949)	CVE-2021-35949 CWE-863	CWE-863	Medium
ownCloud Other Vulnerability (CVE-2012-4389)	CVE-2012-4389		Medium
ownCloud Other Vulnerability (CVE-2012-5057)	CVE-2012-5057		Medium
ownCloud Other Vulnerability (CVE-2012-5609)	CVE-2012-5609		Medium
ownCloud Other Vulnerability (CVE-2013-2089)	CVE-2013-2089		Medium
ownCloud Other Vulnerability (CVE-2015-5954)	CVE-2015-5954		Medium
ownCloud Other Vulnerability (CVE-2015-6670)	CVE-2015-6670		Medium
ownCloud Other Vulnerability (CVE-2022-25338)	CVE-2022-25338		Medium
ownCloud Other Vulnerability (CVE-2022-25339)	CVE-2022-25339		Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4752)	CVE-2012-4752 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5665)	CVE-2012-5665 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0304)	CVE-2013-0304 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1963)	CVE-2013-1963 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2043)	CVE-2013-2043 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2048)	CVE-2013-2048 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-6403)	CVE-2013-6403 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2049)	CVE-2014-2049 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3835)	CVE-2014-3835 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3837)	CVE-2014-3837 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3838)	CVE-2014-3838 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3963)	CVE-2014-3963 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-9048)	CVE-2014-9048 CWE-264	CWE-264	Medium
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-5876)	CVE-2016-5876 CWE-264	CWE-264	Medium
ownCloud Session Fixation Vulnerability (CVE-2021-35948)	CVE-2021-35948 CWE-384	CWE-384	Medium
ownCloud Uncontrolled Resource Consumption Vulnerability (CVE-2017-5867)	CVE-2017-5867 CWE-400	CWE-400	Medium

ownCloud Improper Authentication Vulnerability (CVE-2014-9043)

CVE-2014-9043

CWE-287

Medium

ownCloud Improper Authentication Vulnerability (CVE-2014-9045)

CVE-2014-9045

CWE-287

Medium

ownCloud Improper Authentication Vulnerability (CVE-2020-10254)

CVE-2020-10254

CWE-287

Medium

ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-0204)

CVE-2013-0204

CWE-94

Medium

ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-1850)

CVE-2013-1850

CWE-94

Medium

ownCloud Improper Input Validation Vulnerability (CVE-2012-2270)

CVE-2012-2270

CWE-20

Medium

ownCloud Improper Input Validation Vulnerability (CVE-2012-5336)

CVE-2012-5336

CWE-20

Medium

ownCloud Improper Input Validation Vulnerability (CVE-2012-5610)

CVE-2012-5610

CWE-20

Medium

ownCloud Improper Input Validation Vulnerability (CVE-2013-1939)

CVE-2013-1939

CWE-20

Medium

ownCloud Improper Input Validation Vulnerability (CVE-2013-2044)

CVE-2013-2044

CWE-20

Medium

ownCloud Improper Input Validation Vulnerability (CVE-2014-2585)

CVE-2014-2585

CWE-20

Medium

ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-2039)

CVE-2013-2039

CWE-22

Medium

ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2013-2085)

CVE-2013-2085

CWE-22

Medium

ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-4929)

CVE-2014-4929

CWE-22

Medium

ownCloud Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2023-24804)

CVE-2023-24804

CWE-22

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2269)

CVE-2012-2269

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-2398)

CVE-2012-2398

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4394)

CVE-2012-4394

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4395)

CVE-2012-4395

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4396)

CVE-2012-4396

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4397)

CVE-2012-4397

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5056)

CVE-2012-5056

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5606)

CVE-2012-5606

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5608)

CVE-2012-5608

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-5666)

CVE-2012-5666

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0201)

CVE-2013-0201

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0202)

CVE-2013-0202

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0203)

CVE-2013-0203

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-0298)

CVE-2013-0298

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1890)

CVE-2013-1890

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1942)

CVE-2013-1942

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-1967)

CVE-2013-1967

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-1665)

CVE-2014-1665

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-2057)

CVE-2014-2057

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3832)

CVE-2014-3832

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2014-3833)

CVE-2014-3833

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-1498)

CVE-2016-1498

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7419)

CVE-2016-7419

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9459)

CVE-2016-9459

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9465)

CVE-2016-9465

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-9466)

CVE-2016-9466

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-8896)

CVE-2017-8896

CWE-707

Medium

ownCloud Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9338)

CVE-2017-9338

CWE-707

Medium

ownCloud Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2015-3013)

CVE-2015-3013

CWE-138

Medium

ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-1893)

CVE-2013-1893

CWE-138

Medium

ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-2045)

CVE-2013-2045

CWE-138

Medium

ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2013-2046)

CVE-2013-2046

CWE-138

Medium

ownCloud Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2023-23948)

CVE-2023-23948

CWE-138

Medium

ownCloud Improper Privilege Management Vulnerability (CVE-2020-36251)

CVE-2020-36251

CWE-269

Medium

ownCloud Incorrect Authorization Vulnerability (CVE-2021-29659)

CVE-2021-29659

CWE-863

Medium

ownCloud Incorrect Authorization Vulnerability (CVE-2021-35949)

CVE-2021-35949

CWE-863

Medium

ownCloud Other Vulnerability (CVE-2012-4389)

CVE-2012-4389

Medium

ownCloud Other Vulnerability (CVE-2012-5057)

CVE-2012-5057

Medium

ownCloud Other Vulnerability (CVE-2012-5609)

CVE-2012-5609

Medium

ownCloud Other Vulnerability (CVE-2013-2089)

CVE-2013-2089

Medium

ownCloud Other Vulnerability (CVE-2015-5954)

CVE-2015-5954

Medium

ownCloud Other Vulnerability (CVE-2015-6670)

CVE-2015-6670

Medium

ownCloud Other Vulnerability (CVE-2022-25338)

CVE-2022-25338

Medium

ownCloud Other Vulnerability (CVE-2022-25339)

CVE-2022-25339

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4752)

CVE-2012-4752

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5665)

CVE-2012-5665

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0304)

CVE-2013-0304

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1963)

CVE-2013-1963

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2043)

CVE-2013-2043

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2048)

CVE-2013-2048

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-6403)

CVE-2013-6403

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2049)

CVE-2014-2049

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3835)

CVE-2014-3835

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3837)

CVE-2014-3837

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3838)

CVE-2014-3838

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-3963)

CVE-2014-3963

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-9048)

CVE-2014-9048

CWE-264

Medium

ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-5876)

CVE-2016-5876

CWE-264

Medium

ownCloud Session Fixation Vulnerability (CVE-2021-35948)

CVE-2021-35948

CWE-384

Medium

ownCloud Uncontrolled Resource Consumption Vulnerability (CVE-2017-5867)

CVE-2017-5867

CWE-400

Medium

Medium Severity Vulnerabilities

Severity

Vulnerability Categories

Still Have Questions?

Take action and discover your vulnerabilities