CVE-2012-5607

EPSS 0.38% · P59 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-5607

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The "Lost Password" reset functionality in ownCloud before 4.0.9 and 4.5.0 does not properly check the security token, which allows remote attackers to change an accounts password via unspecified vectors related to a "Remote Timing Attack."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

ownCloud ‘Lost Password’重置功能安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

OwnCloud是德国OwnCloud公司的一套免费且开源的个人云存储解决方案；OwnCloud Server是一个服务器版。PHPExcel是一个基于微软的OpenXML标准和PHP语言的用于操作Office Excel文档的PHP类库，它能够读取、写入不同格式的电子表格。该方案提供文件管理、音乐存储、日历等功能。 ownCloud 4.0.9之前版本和4.5.0版本中的‘Lost Password’重置功能中存在漏洞，该漏洞源于没有正确验证安全令牌。通过与‘Remote Timing Attack’相

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-5607

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-5607

Please Login to view more intelligence information

🔗 http://owncloud.org/changelog/x_refsource_CONFIRM
🔗 http://owncloud.org/security/advisories/oc-sa-2012-002/x_refsource_CONFIRM
🔗 https://github.com/owncloud/core/commit/99cd922x_refsource_CONFIRM
🔗 http://www.openwall.com/lists/oss-security/2012/11/30/3mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2012-5607

Same Patch Batch · n/a · 2012-12-18 · 16 CVEs total

CVE-2012-4348		Symantec Endpoint Protection Manager 远程代码执行漏洞
CVE-2012-4350		Symantec Enterprise Security Manager/Agent 本地权限提升漏洞
CVE-2012-4691		Siemens Automation License Manager 拒绝服务漏洞
CVE-2012-4693		Siemens ProcessSuite/Invensys Wonderware InTouch 本地信息泄露漏洞
CVE-2012-5468		Bogofilter 基于堆的缓冲区溢出漏洞
CVE-2012-5563		OpenStack 信任管理问题漏洞
CVE-2012-5574		Symphony 任意文件访问漏洞
CVE-2012-5576		GIMP 缓冲区错误漏洞
CVE-2012-5606		ownCloud 多个跨站脚本漏洞
CVE-2012-5608		ownCloud ‘apps/user_webdavauth/settings.php’跨站脚本漏洞
CVE-2012-5609		ownCloud ‘lib/migrate.php’不完全黑名单漏洞
CVE-2012-5610		ownCloud ‘lib/filesystem.php’不完全黑名单漏洞
CVE-2012-5622		Red Hat OpenShift 跨站请求伪造漏洞
CVE-2012-5195		Perl 基于堆的缓冲区溢出漏洞
CVE-2012-6422		Samsung Galaxy Android设备内核安全漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-5607

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2012-5607

I. Basic Information for CVE-2012-5607

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-5607

III. Intelligence Information for CVE-2012-5607

Same Patch Batch · n/a · 2012-12-18 · 16 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2012-5607

Leave a comment