Vulnerability Details : CVE-2023-24804
The ownCloud Android app allows ownCloud users to access, share, and edit files and folders. Prior to version 3.0, the app has an incomplete fix for a path traversal issue and is vulnerable to two bypass methods. The bypasses may lead to information disclosure when uploading the app’s internal files, and to arbitrary file write when uploading plain text files (although limited by the .txt extension). Version 3.0 fixes the reported bypasses.
Vulnerability category: Directory traversalInformation leak
Products affected by CVE-2023-24804
- cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:android:*:*
Exploit prediction scoring system (EPSS) score for CVE-2023-24804
0.08%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 34 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2023-24804
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.4
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N |
1.8
|
2.5
|
NIST | |
5.0
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
1.8
|
2.7
|
GitHub, Inc. |
CWE ids for CVE-2023-24804
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by:
- nvd@nist.gov (Primary)
- security-advisories@github.com (Secondary)
References for CVE-2023-24804
-
https://owncloud.com/security-advisories/oc-sa-2023-001/
Insufficient path validation in Android App - ownCloudVendor Advisory
-
https://hackerone.com/reports/377107
HackerOneExploit;Third Party Advisory
-
https://securitylab.github.com/advisories/GHSL-2022-059_GHSL-2022-060_Owncloud_Android_app/
GHSL-2022-059_GHSL-2022-060: SQL injection vulnerabilities in Owncloud Android app - CVE-2023-24804, CVE-2023-23948 | GitHub Security LabExploit;Third Party Advisory
Jump to