Lucene search
HackeroneCVELIST:CVE-2018-3762HistoryJul 05, 2018 - 4:00 p.m.
CVE-2018-3762
2018-07-0516:00:00
CWE-284
hackerone
www.cve.org
2
Nextcloud Server before 12.0.8 and 13.0.3 suffers from improper checks of dropped permissions for incoming shares allowing a user to still request previews for files it should not have access to.
CNA Affected
[
{
"product": "Nextcloud Server",
"vendor": "Nextcloud",
"versions": [
{
"status": "affected",
"version": "<13.0.3, <12.0.8"
}
]
}
]Related
cve
cve
CVE-2018-3762
2018-07-05 16:29:00
nvd
nvd
CVE-2018-3762
2018-07-05 16:29:00
openvas
openvas
openSUSE: Security Advisory for nextcloud (openSUSE-SU-2018:1924-1)
2018-07-12 00:00:00
hackerone
hackerone
Nextcloud: File access control rules not enforced on image files
2018-05-28 15:24:21
osv
osv
CVE-2018-3762
2018-07-05 16:29:00
prion
prion
Input validation
2018-07-05 16:29:00
nextcloud
nextcloud
File access control rules not applied to image previews (NC-SA-2018-002)
2018-06-21 00:00:00
nessus
nessus
openSUSE Security Update : nextcloud (openSUSE-2018-712)
2018-07-12 00:00:00
openSUSE Security Update : nextcloud (openSUSE-2019-511)
2019-03-27 00:00:00
suse
suse
Security update for nextcloud (moderate)
2018-07-11 21:07:57
redhatcve
redhatcve
CVE-2018-3761
2022-05-20 23:29:36