CVE-2013-0300

14.03.2014, 17:55

Multiple cross-site request forgery (CSRF) vulnerabilities in ownCloud 4.5.x before 4.5.7 allow remote attackers to hijack the authentication of users for requests that (1) change the default view via the v parameter to apps/calendar/ajax/changeview.php, mount arbitrary (2) Google Drive or (3) Dropbox folders via vectors related to addRootCertificate.php, dropbox.php and google.php in apps/files_external/ajax/, or (4) change the authentication server URL via unspecified vectors to apps/user_webdavauth/settings.php.

CSRF

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Vector
NIST	NIST	6.8 UNKNOWN	NETWORK	MEDIUM	AV:N/AC:M/Au:N/C:P/I:P/A:P
redhat	CNA	---			---
CVE	ADP	---			---

Base Score

CVSS 3.x

EPSS Score

Percentile: 23%

Vendor	Product	Version
owncloud	owncloud_server	4.5.0
owncloud	owncloud_server	4.5.1
owncloud	owncloud_server	4.5.2
owncloud	owncloud_server	4.5.3
owncloud	owncloud_server	4.5.4
owncloud	owncloud_server	4.5.5
owncloud	owncloud_server	4.5.6

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

owncloud

quantal	not-affected
precise	not-affected
oneiric	not-affected
lucid	dne
hardy	dne

Common Weakness Enumeration

CWE-352 - Cross-Site Request Forgery (CSRF)
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References

http://owncloud.org/about/security/advisories/oC-SA-2013-004/