| Added |
CVSS V3.1 |
|
NIST AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| Added |
CWE |
|
NIST NVD-CWE-noinfo
|
| Added |
CPE Configuration |
|
OR
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:* versions from (including) 20.0.0 up to (excluding) 20.0.14.15
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:* versions from (including) 21.0.0 up to (excluding) 21.0.9.13
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:* versions from (including) 22.0.0 up to (excluding) 22.2.10.14
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:* versions from (including) 23.0.0 up to (excluding) 23.0.12.9
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:* versions from (including) 24.0.0 up to (excluding) 24.0.12.5
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:-:*:*:* versions from (including) 25.0.0 up to (excluding) 25.0.9
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:* versions from (including) 25.0.0 up to (excluding) 25.0.9
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:-:*:*:* versions from (including) 26.0.0 up to (excluding) 26.0.4
*cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:* versions from (including) 26.0.0 up to (excluding) 26.0.4
*cpe:2.3:a:nextcloud:nextcloud_server:27.0.0:*:*:*:-:*:*:*
*cpe:2.3:a:nextcloud:nextcloud_server:27.0.0:*:*:*:enterprise:*:*:*
|
| Changed |
Reference Type |
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-j4qm-5q5x-54m5 No Types Assigned
|
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-j4qm-5q5x-54m5 Vendor Advisory
|
| Changed |
Reference Type |
https://github.com/nextcloud/server/pull/39416 No Types Assigned
|
https://github.com/nextcloud/server/pull/39416 Patch
|
| Changed |
Reference Type |
https://hackerone.com/reports/2067572 No Types Assigned
|
https://hackerone.com/reports/2067572 Third Party Advisory
|
) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
