Not surprisingly given ease of exploitation we have started seeing OwnCloud CVE-2023-49103 attempts. This is a CVSS 10 disclosure of sensitive credentials & configs in containerized deployments. Please follow ownCloud advisory mitigation steps:

https://owncloud.com/security-advisories/disclosure-of-sensitive-credentials-and-configuration-in-containerized-deployments/

Please also note 2 other vulnerabilities reported:

CVE-2023-49104: https://owncloud.com/security-advisories/subdomain-validation-bypass/

CVE-2023-49105:-https://owncloud.com/security-advisories/webdav-api-authentication-bypass-using-pre-signed-urls/

We are sharing ownCloud instances we see in our scans (no vuln assessment, only accessibility) in our Device Identification report https://shadowserver.org/what-we-do/network-reporting/device-identification-report/

Currently over 11K IPs being reported out (we are also working on adding additional fingerprints)

https://dashboard.shadowserver.org/statistics/iot-devices/map/?day=2023-11-26&vendor=owncloud&geo=all&data_set=count&scale=log