appconfig.php in ownCloud before 4.0.6 does not properly restrict access, which allows remote authenticated users to edit app configurations via unspecified vectors. NOTE: this can be leveraged by unauthenticated remote attackers using CVE-2012-4393.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Owncloud |
|
Configuration 1 [-]
|
No data.
References
History
Mon, 31 Mar 2025 12:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Owncloud owncloud Server
|
|
| CPEs | cpe:2.3:a:owncloud:owncloud:3.0.1:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud:3.0.2:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud:3.0.3:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud:4.0.0:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud:4.0.1:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud:4.0.2:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud:4.0.3:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud:4.0.4:*:*:*:*:*:*:* |
cpe:2.3:a:owncloud:owncloud_server:3.0.0:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_server:3.0.1:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_server:3.0.2:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_server:3.0.3:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_server:4.0.0:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_server:4.0.1:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_server:4.0.2:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_server:4.0.3:*:*:*:*:*:*:* cpe:2.3:a:owncloud:owncloud_server:4.0.4:*:*:*:*:*:*:* |
| Vendors & Products |
Owncloud owncloud Server
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-09-16T23:46:49.688Z
Reserved: 2012-09-05T00:00:00Z
Link: CVE-2012-4752
Vulnrichment
No data.
NVD
Status : Deferred
Published: 2012-09-05T23:55:03.147
Modified: 2025-04-11T00:51:21.963
Link: CVE-2012-4752
Redhat
No data.