Improper State Switching in ownCloud iOS App Allows Credential and Cookie Information Disclosure

Improper State Switching in ownCloud iOS App Allows Credential and Cookie Information Disclosure

CVE-2015-5955 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

ownCloud iOS app before 3.4.4 does not properly switch state between multiple instances, which might allow remote instance administrators to obtain sensitive credential and cookie information by reading authentication headers.

Learn more about our Cis Benchmark Audit For Apple Ios.