Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
ownCloud Session Fixation Vulnerability - CVE-2021-35948 - Vulnerability Database
ownCloud

ownCloud Session Fixation Vulnerability - CVE-2021-35948

Medium
Reference: CVE-2021-35948
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-35948
Title: ownCloud Session Fixation Vulnerability
Overview:

Session fixation on password protected public links in the ownCloud Server before 10.8.0 allows an attacker to bypass the password protection when they can force a target client to use a controlled cookie.