Question 1

What is CVE-2022-43679 — CVE-2022-43679?

Accepted Answer

The Docker image of ownCloud Server through 10.11 contains a misconfiguration that renders the trusted_domains config useless. This could be abused to spoof the URL in password-reset e-mail messages.

Question 2

What is the authoritative source for CVE-2022-43679?

Accepted Answer

CVE-2022-43679 (CVE-2022-43679) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

CVSS	4.2 ()
Vector	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
EPSS	0.32% probability of exploitation · percentile 23.9% · 2026-06-18T12:00:27Z
Last modified	2026-06-17

CVE-2022-43679CVE-2022-43679

Description

Scoring