Lucene search

CVE-2018-16464

🗓️ 30 Oct 2018 21:00:29Reported by hackeroneType

A missing access check in Nextcloud Server prior to 14.0.0 could lead to continued access to password protected lin

Reporter	Title	Published	Views	Family All 8
Prion	Default credentials	30 Oct 201821:29	–	prion
Hacker One	Nextcloud: Authentication Issue	20 Jun 201622:42	–	hackerone
Cvelist	CVE-2018-16464	30 Oct 201821:00	–	cvelist
OSV	CVE-2018-16464	30 Oct 201821:29	–	osv
NVD	CVE-2018-16464	30 Oct 201821:29	–	nvd
Nextcloud	Improper authentication on public shares (NC-SA-2018-012)	25 Oct 201800:00	–	nextcloud
OpenVAS	Nextcloud Server < 14.0.0 Multiple Vulnerabilities (NC-SA-2018-011, NC-SA-2018-012, NC-SA-2018-014) - Linux	1 Nov 201800:00	–	openvas
OpenVAS	Nextcloud Server < 14.0.0 Multiple Vulnerabilities (NC-SA-2018-011, NC-SA-2018-012, NC-SA-2018-014) - Windows	1 Nov 201800:00	–	openvas

Nvd

Vulners

Node

nextcloud nextcloud_serverRange<14.0.0

[
  {
    "product": "Nextcloud Server",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "<14.0.0"
      }
    ]
  }
]

Source	Link
hackerone	www.hackerone.com/reports/146133
nextcloud	www.nextcloud.com/security/advisory/

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Oct 2018 21:29Current

5.5Medium risk

Vulners AI Score5.5

CVSS23.5

CVSS35.7

EPSS0.00222

CWE-287