Vulnerabilities > CVE-2022-43679 - Unspecified vulnerability in Owncloud

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
LOW
Availability impact
NONE
network
low complexity
owncloud
NVD
Published: 2022-11-10
Updated: 2022-11-15

Summary

The Docker image of ownCloud Server through 10.11 contains a misconfiguration that renders the trusted_domains config useless. This could be abused to spoof the URL in password-reset e-mail messages.

Vulnerable Configurations

Part Description Count
Application
Owncloud
640

References