CVE-2021-35946 - Owncloud Owncloud
Critical 9.8
A receiver of a federated share with access to the database with ownCloud version before 10.8 could update the permissions and therefore elevate their own permissions.
Affected software
Owncloud Owncloud