Files Antivirus

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:a:owncloud:files_antivirus:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorOwncloud (7adb7c81-0e09-5084-ad84-9888a985e435)
ProductFiles Antivirus (cd38282c-88c5-5f84-b82d-3da3957df9fb)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/owncloud/files_antivirus purl2cpe 2026-06-01 10:16:35.667643

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2021-33828 vulnerable 2026-06-03 14:44:44.256140 Details available
The files_antivirus component before 1.0.0 for ownCloud mishandles the protection mechanism by which malicious files (that have been uploaded to a public share) are supposed to be deleted upon detection.
Published: 2022-01-15T20:54:30.000Z
Updated: 2024-08-03T23:58:23.106Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2021-33827 vulnerable 2026-06-03 14:44:44.255744 Details available
The files_antivirus component before 1.0.0 for ownCloud allows OS Command Injection via the administration settings.
Published: 2022-01-15T20:55:50.000Z
Updated: 2024-08-03T23:58:23.084Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2020-16144 vulnerable 2026-06-03 14:41:47.220308 Details available
When using an object storage like S3 as the file store, when a user creates a public link to a folder where anonymous users can upload files, and another user uploads a virus the files antivirus app would detect the virus but fails to delete it due to permission issues. This affects the files_antivirus component versions before 0.15.2 for ownCloud.
Published: 2021-02-09T17:59:11.000Z
Updated: 2024-08-04T13:37:53.528Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.