Not surprisingly given ease of exploitation we have started seeing OwnCloud CVE-2023-49103 attempts. This is a CVSS 10 disclosure of sensitive credentials & configs in containerized deployments. Please follow ownCloud advisory mitigation steps:
Please also note 2 other vulnerabilities reported:
CVE-2023-49104: https://owncloud.com/security-advisories/subdomain-validation-bypass/
CVE-2023-49105:-https://owncloud.com/security-advisories/webdav-api-authentication-bypass-using-pre-signed-urls/
We are sharing ownCloud instances we see in our scans (no vuln assessment, only accessibility) in our Device Identification report https://shadowserver.org/what-we-do/network-reporting/device-identification-report/
Currently over 11K IPs being reported out (we are also working on adding additional fingerprints)