Lucene search
CVE-2023-25579
Nextcloud server `OC\Files\Node\Folder::getFullPath()` function in versions 25.0.2, 24.0.8, and 23.0.12 allows creation of paths outside of user's space
Show more
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2023-25579 Directory traversal in Nextcloud server | 22 Feb 202318:21 | – | vulnrichment |
 | CVE-2023-25579 | 22 Feb 202319:15 | – | osv |
| OPENSUSE-SU-2023:0083-1 Security update for nextcloud | 3 Apr 202314:24 | – | osv |
 | Design/Logic Flaw | 22 Feb 202319:15 | – | prion |
 | CVE-2023-25579 Directory traversal in Nextcloud server | 22 Feb 202318:21 | – | cvelist |
 | CVE-2023-25579 | 22 Feb 202319:15 | – | nvd |
 | Nextcloud Server < 23.0.12, 24.x < 24.0.8, 25.x < 25.0.2 Path Traversal Vulnerability (GHSA-273v-9h7x-p68v) | 23 Feb 202300:00 | – | openvas |
| openSUSE: Security Advisory for nextcloud (openSUSE-SU-2023:0083-1) | 4 Mar 202400:00 | – | openvas |
 | Potential directory traversal in OC\Files\Node\Folder::getFullPath | 22 Feb 202308:33 | – | nextcloud |
 | openSUSE 15 Security Update : nextcloud (openSUSE-SU-2023:0083-1) | 4 Apr 202300:00 | – | nessus |
10
Node
OROROROROROROROR
[
{
"vendor": "nextcloud",
"product": "security-advisories",
"versions": [
{
"version": "< 23.0.12",
"status": "affected"
},
{
"version": ">= 24.0.0, < 24.0.8",
"status": "affected"
},
{
"version": ">= 25.0.0, < 25.0.2",
"status": "affected"
}
]
}
]Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo22 Feb 2023 19:15Current
6.5Medium risk
Vulners AI Score6.5
CVSS36 - 7.5
EPSS0.00065
SSVC