CVE-2016-9467

CVSS V2 Medium 5 CVSS V3 Medium 5.3
Description
Nextcloud Server before 9.0.54 and 10.0.1 & ownCloud Server before 9.0.6 and 9.1.2 suffer from content spoofing in the files app. The location bar in the files app was not verifying the passed parameters. An attacker could craft an invalid link to a fake directory structure and use this to display an attacker-controlled error message to the user.
Overview
  • CVE ID
  • CVE-2016-9467
  • Assigner
  • support@hackerone.com
  • Vulnerability Status
  • Modified
  • Published Version
  • 2017-03-28T02:59:01
  • Last Modified Date
  • 2019-10-09T23:20:29
Weakness Enumerations
CWE URL
CWE-284 http://cwe.mitre.org/data/definitions/284.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:*:*:*:* 1 OR 9.0.54
cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:*:*:*:* 1 OR 10.0.0 10.0.1
cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:*:*:* 1 OR 9.0.0 9.0.6
cpe:2.3:a:owncloud:owncloud:*:*:*:*:*:*:*:* 1 OR 9.1.0 9.1.2
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:N/I:P/A:N
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • NONE
  • Integrity Impact
  • PARTIAL
  • Availability Impact
  • NONE
  • Base Score
  • 5
  • Severity
  • MEDIUM
  • Exploitability Score
  • 10
  • Impact Score
  • 2.9
CVSS Version 3
  • Version
  • 3.0
  • Vector String
  • CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
  • Attack Vector
  • NETWORK
  • Attack Compatibility
  • LOW
  • Privileges Required
  • NONE
  • User Interaction
  • NONE
  • Scope
  • UNCHANGED
  • Confidentiality Impact
  • NONE
  • Availability Impact
  • NONE
  • Base Score
  • 5.3
  • Base Severity
  • MEDIUM
  • Exploitability Score
  • 3.9
  • Impact Score
  • 1.4
References
Reference URL Reference Tags
https://owncloud.org/security/advisory/?id=oc-sa-2016-020 Patch Vendor Advisory
https://nextcloud.com/security/advisory/?id=nc-sa-2016-010 Patch Vendor Advisory
https://hackerone.com/reports/154827 Exploit Third Party Advisory
https://github.com/owncloud/core/commit/e7acbce27fa0ef1c6fe216ca67c72d86484919a4 Issue Tracking Patch Third Party Advisory
https://github.com/owncloud/core/commit/768221fcf3c526c65d85f62b0efa2da5ea00bf2d Issue Tracking Patch Third Party Advisory
https://github.com/nextcloud/server/commit/ed0f0db5fa0aff04594cb0f973ae4c22b17a175a Issue Tracking Patch Third Party Advisory
https://github.com/nextcloud/server/commit/df50e967dbd27b13875625b7dd3189294619b071 Issue Tracking Patch Third Party Advisory
https://github.com/nextcloud/server/commit/c3ae21fef2880c9fe44e8fdbe1262ac7f9716f14 Issue Tracking Patch Third Party Advisory
https://github.com/nextcloud/server/commit/778ae8abd54c378fc4781394bbedc7a2ee3095e1 Issue Tracking Patch Third Party Advisory
https://github.com/nextcloud/server/commit/5dd211cc8845fd4533966bf8d7a7f2a6359ea013 Issue Tracking Patch Third Party Advisory
https://github.com/nextcloud/server/commit/1352365e8bf5ea49da3dc82b1ccf7ddb659ae960 Issue Tracking Patch Third Party Advisory
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2016-9467
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9467
History
Created Old Value New Value Data Type Notes
2022-05-10 17:13:40 Added to TrackCVE
2022-12-02 15:12:08 cve-assignments@hackerone.com support@hackerone.com CVE Assigner updated
2022-12-02 15:12:08 2017-03-28T02:59Z 2017-03-28T02:59:01 CVE Published Date updated
2022-12-02 15:12:08 2019-10-09T23:20:29 CVE Modified Date updated
2022-12-02 15:12:08 Modified Vulnerability Status updated