NVD - CVE-2023-30539

Vulnerability Change Records for CVE-2023-30539

Change History

Initial Analysis by NIST 4/27/2023 12:40:57 PM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:nextcloud:nextcloud_files_automated_tagging:1.11.0::::::: cpe:2.3:a:nextcloud:nextcloud_files_automated_tagging:1.12.0::::::: cpe:2.3:a:nextcloud:nextcloud_files_automated_tagging:1.13.0::::::: cpe:2.3:a:nextcloud:nextcloud_files_automated_tagging::::::::* versions from (including) 1.14.0 up to (excluding) 1.14.2 cpe:2.3:a:nextcloud:nextcloud_files_automated_tagging::::::::* versions from (including) 1.15.0 up to (excluding) 1.15.3 cpe:2.3:a:nextcloud:nextcloud_files_automated_tagging:1.16.0::::::: cpe:2.3:a:nextcloud:nextcloud_server:::::enterprise::: versions from (including) 21.0.0 up to (excluding) 21.0.9.11 cpe:2.3:a:nextcloud:nextcloud_server:::::enterprise::: versions from (including) 22.0.0 up to (excluding) 22.2.10.11 cpe:2.3:a:nextcloud:nextcloud_server:::::enterprise::: versions from (including) 23.0.0 up to (excluding) 23.0.12.6 cpe:2.3:a:nextcloud:nextcloud_server:::::-::: versions from (including) 24.0.0 up to (excluding) 24.0.11 cpe:2.3:a:nextcloud:nextcloud_server:::::enterprise::: versions from (including) 24.0.0 up to (excluding) 24.0.11 cpe:2.3:a:nextcloud:nextcloud_server:::::-::: versions from (including) 25.0.0 up to (excluding) 25.0.5 cpe:2.3:a:nextcloud:nextcloud_server:::::enterprise::: versions from (including) 25.0.0 up to (excluding) 25.0.5
Added	CVSS V3.1		NIST AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Added	CWE		NIST NVD-CWE-noinfo
Changed	Reference Type	https://github.com/nextcloud/files_automatedtagging/pull/705 No Types Assigned	https://github.com/nextcloud/files_automatedtagging/pull/705 Issue Tracking, Patch
Changed	Reference Type	https://github.com/nextcloud/security-advisories/security/advisories/GHSA-3m2f-v8x7-9w99 No Types Assigned	https://github.com/nextcloud/security-advisories/security/advisories/GHSA-3m2f-v8x7-9w99 Vendor Advisory
Changed	Reference Type	https://github.com/nextcloud/server/pull/37252 No Types Assigned	https://github.com/nextcloud/server/pull/37252 Patch
Changed	Reference Type	https://hackerone.com/reports/1895976 No Types Assigned	https://hackerone.com/reports/1895976 Permissions Required