Skip Navigation

Disclosure of sensitive credentials and configuration in containerized deployments - ownCloud

Disclosure of sensitive credentials and configuration in containerized deployments - ownCloud

Note that Docker-Containers from before February 2023 are not vulnerable to the credential disclosure.

I haven't seen this posted yet here, but anybody self-hosting OwnCloud in a containerized environment may be exposing sensitive environment variables to the public internet. There may be other implications as well.

Comments

29

Comments

29