CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1939

The HTML\Browser plugin in SabreDAV before 1.6.9, 1.7.x before 1.7.7, and 1.8.x before 1.8.5, as used in ownCloud, when running on Windows, does not properly check path separators in the base path, which allows remote attackers to read arbitrary files via a \ (backslash) character.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 45.9%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2013-1939

Fruux » Sabredav » Version: 1.6.0

cpe:2.3:a:fruux:sabredav:1.6.0
Fruux » Sabredav » Version: 1.6.1

cpe:2.3:a:fruux:sabredav:1.6.1
Fruux » Sabredav » Version: 1.6.2

cpe:2.3:a:fruux:sabredav:1.6.2
Fruux » Sabredav » Version: 1.6.3

cpe:2.3:a:fruux:sabredav:1.6.3
Fruux » Sabredav » Version: 1.6.4

cpe:2.3:a:fruux:sabredav:1.6.4
Fruux » Sabredav » Version: 1.6.5

cpe:2.3:a:fruux:sabredav:1.6.5
Fruux » Sabredav » Version: 1.6.6

cpe:2.3:a:fruux:sabredav:1.6.6
Fruux » Sabredav » Version: 1.6.7

cpe:2.3:a:fruux:sabredav:1.6.7
Fruux » Sabredav » Version: 1.6.8

cpe:2.3:a:fruux:sabredav:1.6.8
Fruux » Sabredav » Version: 1.7.0

cpe:2.3:a:fruux:sabredav:1.7.0
Fruux » Sabredav » Version: 1.7.1

cpe:2.3:a:fruux:sabredav:1.7.1
Fruux » Sabredav » Version: 1.7.2

cpe:2.3:a:fruux:sabredav:1.7.2
Fruux » Sabredav » Version: 1.7.3

cpe:2.3:a:fruux:sabredav:1.7.3
Fruux » Sabredav » Version: 1.7.4

cpe:2.3:a:fruux:sabredav:1.7.4
Fruux » Sabredav » Version: 1.7.5

cpe:2.3:a:fruux:sabredav:1.7.5
Fruux » Sabredav » Version: 1.7.6

cpe:2.3:a:fruux:sabredav:1.7.6
Fruux » Sabredav » Version: 1.8.0

cpe:2.3:a:fruux:sabredav:1.8.0
Fruux » Sabredav » Version: 1.8.1

cpe:2.3:a:fruux:sabredav:1.8.1
Fruux » Sabredav » Version: 1.8.2

cpe:2.3:a:fruux:sabredav:1.8.2
Fruux » Sabredav » Version: 1.8.3

cpe:2.3:a:fruux:sabredav:1.8.3
Fruux » Sabredav » Version: 1.8.4

cpe:2.3:a:fruux:sabredav:1.8.4
Owncloud » Owncloud Server » Version: 4.0.0

cpe:2.3:a:owncloud:owncloud_server:4.0.0
Owncloud » Owncloud Server » Version: 4.0.1

cpe:2.3:a:owncloud:owncloud_server:4.0.1
Owncloud » Owncloud Server » Version: 4.0.10

cpe:2.3:a:owncloud:owncloud_server:4.0.10
Owncloud » Owncloud Server » Version: 4.0.11

cpe:2.3:a:owncloud:owncloud_server:4.0.11
Owncloud » Owncloud Server » Version: 4.0.12

cpe:2.3:a:owncloud:owncloud_server:4.0.12
Owncloud » Owncloud Server » Version: 4.0.13

cpe:2.3:a:owncloud:owncloud_server:4.0.13
Owncloud » Owncloud Server » Version: 4.0.2

cpe:2.3:a:owncloud:owncloud_server:4.0.2
Owncloud » Owncloud Server » Version: 4.0.3

cpe:2.3:a:owncloud:owncloud_server:4.0.3
Owncloud » Owncloud Server » Version: 4.0.4

cpe:2.3:a:owncloud:owncloud_server:4.0.4
Owncloud » Owncloud Server » Version: 4.0.5

cpe:2.3:a:owncloud:owncloud_server:4.0.5
Owncloud » Owncloud Server » Version: 4.0.6

cpe:2.3:a:owncloud:owncloud_server:4.0.6
Owncloud » Owncloud Server » Version: 4.0.7

cpe:2.3:a:owncloud:owncloud_server:4.0.7
Owncloud » Owncloud Server » Version: 4.0.8

cpe:2.3:a:owncloud:owncloud_server:4.0.8
Owncloud » Owncloud Server » Version: 4.0.9

cpe:2.3:a:owncloud:owncloud_server:4.0.9
Owncloud » Owncloud Server » Version: 4.5.0

cpe:2.3:a:owncloud:owncloud_server:4.5.0
Owncloud » Owncloud Server » Version: 4.5.1

cpe:2.3:a:owncloud:owncloud_server:4.5.1
Owncloud » Owncloud Server » Version: 4.5.2

cpe:2.3:a:owncloud:owncloud_server:4.5.2
Owncloud » Owncloud Server » Version: 4.5.3

cpe:2.3:a:owncloud:owncloud_server:4.5.3
Owncloud » Owncloud Server » Version: 4.5.4

cpe:2.3:a:owncloud:owncloud_server:4.5.4
Owncloud » Owncloud Server » Version: 4.5.5

cpe:2.3:a:owncloud:owncloud_server:4.5.5
Owncloud » Owncloud Server » Version: 4.5.6

cpe:2.3:a:owncloud:owncloud_server:4.5.6
Owncloud » Owncloud Server » Version: 4.5.7

cpe:2.3:a:owncloud:owncloud_server:4.5.7
Owncloud » Owncloud Server » Version: 4.5.8

cpe:2.3:a:owncloud:owncloud_server:4.5.8
Owncloud » Owncloud Server » Version: 5.0.0

cpe:2.3:a:owncloud:owncloud_server:5.0.0
Owncloud » Owncloud Server » Version: 5.0.1

cpe:2.3:a:owncloud:owncloud_server:5.0.1
Owncloud » Owncloud Server » Version: 5.0.2

cpe:2.3:a:owncloud:owncloud_server:5.0.2
Owncloud » Owncloud Server » Version: 5.0.3

cpe:2.3:a:owncloud:owncloud_server:5.0.3
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Microsoft » Windows » Version: 1.0

cpe:2.3:o:microsoft:windows:1.0
Microsoft » Windows » Version: 2.0

cpe:2.3:o:microsoft:windows:2.0
Microsoft » Windows » Version: 2000

cpe:2.3:o:microsoft:windows:2000
Microsoft » Windows » Version: 3.0

cpe:2.3:o:microsoft:windows:3.0
Microsoft » Windows » Version: 3.1

cpe:2.3:o:microsoft:windows:3.1
Microsoft » Windows » Version: 3.11

cpe:2.3:o:microsoft:windows:3.11
Microsoft » Windows » Version: server_2008

cpe:2.3:o:microsoft:windows:server_2008
Microsoft » Windows » Version: vista

cpe:2.3:o:microsoft:windows:vista

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-1939

Products

Pricing

Contact Us