Arbitrary Preview Picture Access in ownCloud Server before 6.0.1

Arbitrary Preview Picture Access in ownCloud Server before 6.0.1

CVE-2014-3963 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

ownCloud Server before 6.0.1 does not properly check permissions, which allows remote authenticated users to access arbitrary preview pictures via unspecified vectors.

Learn more about our Cis Benchmark Audit For Server Software.