Vulnerability Details CVE-2015-5955
ownCloud iOS app before 3.4.4 does not properly switch state between multiple instances, which might allow remote instance administrators to obtain sensitive credential and cookie information by reading authentication headers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 42.9%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2015-5955
-
cpe:2.3:a:owncloud:owncloud_client:-
-
cpe:2.3:a:owncloud:owncloud_client:1.0.1
-
cpe:2.3:a:owncloud:owncloud_client:1.0.2
-
cpe:2.3:a:owncloud:owncloud_client:1.0.3
-
cpe:2.3:a:owncloud:owncloud_client:1.0.4
-
cpe:2.3:a:owncloud:owncloud_client:1.1.0
-
cpe:2.3:a:owncloud:owncloud_client:1.1.1
-
cpe:2.3:a:owncloud:owncloud_client:1.1.2
-
cpe:2.3:a:owncloud:owncloud_client:1.2.0
-
cpe:2.3:a:owncloud:owncloud_client:1.2.1
-
cpe:2.3:a:owncloud:owncloud_client:1.3.0
-
cpe:2.3:a:owncloud:owncloud_client:1.3.1
-
cpe:2.3:a:owncloud:owncloud_client:1.3.2
-
cpe:2.3:a:owncloud:owncloud_client:3.3.3
-
cpe:2.3:a:owncloud:owncloud_client:3.4.0
-
cpe:2.3:a:owncloud:owncloud_client:3.4.1