{ "affected": [ { "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "last_affected": "8.0.8" }, { "introduced": "0" }, { "last_affected": "8.1.0" }, { "introduced": "0" }, { "last_affected": "8.1.1" }, { "introduced": "0" }, { "last_affected": "8.1.3" } ] }, "events": [ { "introduced": "0" }, { "last_affected": "07546d0e8ce2a2a5d3611718495c57853ce101ff" }, { "introduced": "0" }, { "last_affected": "06ec916b1128b9a1ec79751bdd78cc4a8c64ace8" }, { "introduced": "0" }, { "last_affected": "ca66a705ec59cce1ac60c2fb92ec543e296c23f9" }, { "introduced": "0" }, { "last_affected": "015323c1cb239ab242ff43183fd2edb8e3103025" } ], "repo": "https://github.com/owncloud/core", "type": "GIT" } ] } ], "details": "ownCloud Server before 8.0.9 and 8.1.x before 8.1.4 allow remote authenticated users to obtain sensitive information via unspecified vectors, which reveals the installation path in the resulting exception messages.", "id": "CVE-2016-1501", "modified": "2026-03-13T21:58:19.970120703Z", "published": "2016-01-08T21:59:09.967Z", "references": [ { "type": "ADVISORY", "url": "https://owncloud.org/security/advisory/?id=oc-sa-2016-004" } ], "severity": [ { "score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "type": "CVSS_V3" } ] }