Serial number: AV23-721
Date: November 28, 2023
On November 21, 2023, ownCloud published security advisories to address critical vulnerabilities in the following products::
- ownCloud graphapi – version 0.20 to 0.30
- ownCloud oauth2 – prior to version 0.6.1
- ownCloud core – version 10.6.0 to 10.13.0
The Cyber Centre has received reports that CVE-2023-49103 has been exploited.
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.