Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-70105
HistorySep 10, 2021 - 12:00 a.m.

Nextcloud Information Disclosure Vulnerability (CNVD-2021-70105)

2021-09-1000:00:00
China National Vulnerability Database
www.cnvd.org.cn
5

0.001 Low

EPSS

Percentile

36.7%

An information disclosure vulnerability exists in Nextcloud Richdocuments, an open source self-hosted file synchronization and sharing communication application platform from Nextcloud Germany, which stems from the fact that in the affected version, the Richdocuments OCS endpoint is not rate-limited. An attacker could exploit the vulnerability to enumerate potentially valid sharing tokens.

0.001 Low

EPSS

Percentile

36.7%

Related for CNVD-2021-70105