Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-9459

Nextcloud Server before 9.0.52 & ownCloud Server before 9.0.4 are vulnerable to a log pollution vulnerability potentially leading to a local XSS. The download log functionality in the admin screen is delivering the log in JSON format to the end-user. The file was delivered with an attachment disposition forcing the browser to download the document. However, Firefox running on Microsoft Windows would offer the user to open the data in the browser as an HTML document. Thus any injected data in the log would be executed.

Published

2017-03-28T02:59:00.730

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 6.1 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Secondary
CWE-209
Type: Primary
CWE-79

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	nextcloud	nextcloud_server	< 9.0.52	Yes
Application	owncloud	owncloud	< 9.0.4	Yes

References

http://www.securityfocus.com/bid/97284 Third Party Advisory, VDB Entry ([email protected])
https://github.com/nextcloud/server/commit/94975af6db1551c2d23136c2ea22866a5b416070 Issue Tracking, Patch, Third Party Advisory ([email protected])
https://github.com/owncloud/core/commit/044ee072a647636b1a17c89265c7233b35371335 Issue Tracking, Patch, Third Party Advisory ([email protected])
https://github.com/owncloud/core/commit/b7fa2c5dc945b40bc6ed0a9a0e47c282ebf043e1 Issue Tracking, Patch, Third Party Advisory ([email protected])
https://github.com/owncloud/core/commit/efa35d621dc7ff975468e636a5d1c153511296dc Issue Tracking, Patch, Third Party Advisory ([email protected])
https://hackerone.com/reports/146278 Exploit, Third Party Advisory ([email protected])
https://nextcloud.com/security/advisory/?id=nc-sa-2016-002 Patch, Vendor Advisory ([email protected])
https://owncloud.org/security/advisory?id=oc-sa-2016-012 Patch, Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/97284 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/nextcloud/server/commit/94975af6db1551c2d23136c2ea22866a5b416070 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/owncloud/core/commit/044ee072a647636b1a17c89265c7233b35371335 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/owncloud/core/commit/b7fa2c5dc945b40bc6ed0a9a0e47c282ebf043e1 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/owncloud/core/commit/efa35d621dc7ff975468e636a5d1c153511296dc Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://hackerone.com/reports/146278 Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://nextcloud.com/security/advisory/?id=nc-sa-2016-002 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://owncloud.org/security/advisory?id=oc-sa-2016-012 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)