CVE-2020-36248

Name of the Vulnerable Software and Affected Versions: ownCloud versions prior to 2.15 for Android

Description: The issue allows attackers to bypass the PIN lock feature by including a PIN preferences value in a backup archive using adb and then restoring from this archive. This enables them to access the application without entering the PIN.

Recommendations: For ownCloud versions prior to 2.15 for Android, update to version 2.15 or later to resolve the issue. As a temporary workaround, consider restricting access to the backup and restore functionality to minimize the risk of exploitation.