Vulners
Lucene search
The vulnerability of cloud-based software for creating and using Nextcloud storage solutions lies in the storage of OAuth2 tokens in an exposed manner. This allows attackers to gain access to the server and enhance their privileges.
🗓️ 26 Oct 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec🔗 bdu.fstec.ru👁 2 Views
| Reporter | Title | Published | Views | Family All 68 |
|---|---|---|---|---|
| The vulnerability of the Memcached component of cloud software for creating and using Nextcloud data storage allows a attacker to cause a service failure. | 26 Oct 202300:00 | – | bdu_fstec |
 | CVE-2023-45148 | 16 Oct 202322:32 | – | circl |
| CVE-2023-45151 | 16 Oct 202322:32 | – | circl |
 | Nextcloud Security Breach | 16 Oct 202300:00 | – | cnnvd |
| Nextcloud Security Breach | 16 Oct 202300:00 | – | cnnvd |
 | CVE-2023-45148 | 16 Oct 202318:51 | – | cve |
| CVE-2023-45151 | 16 Oct 202318:41 | – | cve |
 | CVE-2023-45148 Rate limiter not working reliable when Memcached is installed in Nextcloud | 16 Oct 202318:51 | – | cvelist |
| CVE-2023-45151 OAuth2 client_secret stored in plain text in the Nextcloud database | 16 Oct 202318:41 | – | cvelist |
 | EUVD-2023-49455 | 3 Oct 202520:07 | – | euvd |
10
Node
OROR
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
26 Oct 2023 00:00Current
5.8Medium risk
Vulners AI Score5.8
CVSS 38.8
CVSS 29
EPSS0.00699