Lucene search
China National Vulnerability DatabaseCNVD-2021-102879HistoryOct 28, 2021 - 12:00 a.m.
Nextcloud Mail Information Disclosure Vulnerability
2021-10-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
nextcloud
mail
information disclosure
vulnerability
unfiltered images
privacy filter
relative protocols
sensitive information
attack
EPSS
0.001
Percentile
24.8%
Nextcloud is a set of open source self-hosted file synchronization and sharing communication applications platform from Germany-based Nextcloud. Nextcloud Mail applications prior to versions 1.10.4 and 1.11.0 are vulnerable to an information disclosure vulnerability that stems from a privacy filter that does not use relative protocols to filter images. An attacker could exploit this vulnerability to obtain sensitive information.
Related
cvelist
cvelist
CVE-2021-39220 Bypass of image blocking in Nextcloud Mail
2021-10-25 18:55:14
prion
prion
Design/Logic Flaw
2021-10-25 19:15:00
nextcloud
nextcloud
Bypass of image blocking in Nextcloud Mail
2021-10-25 10:59:26
cve
cve
CVE-2021-39220
2021-10-25 19:15:09
nvd
nvd
CVE-2021-39220
2021-10-25 19:15:09
osv
osv
CVE-2021-39220
2021-10-25 19:15:09