Lucene search
HackeroneCVELIST:CVE-2021-22895HistoryJun 11, 2021 - 3:49 p.m.
CVE-2021-22895
2021-06-1115:49:38
CWE-295
hackerone
www.cve.org
Nextcloud Desktop Client before 3.3.1 is vulnerable to improper certificate validation due to lack of SSL certificate verification when using the “Register with a Provider” flow.
CNA Affected
[
{
"product": "Nextcloud Desktop Client",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Fixed in 3.3.1"
}
]
}
]Related
nextcloud
nextcloud
SSL certificate was not validated in Provider Registration Flow
2021-06-01 17:50:39
nvd
nvd
CVE-2021-22895
2021-06-11 16:15:10
hackerone
hackerone
Nextcloud: SSL certificate not validated when registering with a provider
2020-06-20 01:40:16
debiancve
debiancve
CVE-2021-22895
2021-06-11 16:15:10
prion
prion
Input validation
2021-06-11 16:15:00
osv
osv
CVE-2021-22895
2021-06-11 16:15:10
nextcloud-desktop - security update
2021-09-19 00:00:00
cve
cve
CVE-2021-22895
2021-06-11 16:15:10
veracode
veracode
Insecure Certificate Validation
2021-08-23 11:44:11
ubuntucve
ubuntucve
CVE-2021-22895
2021-06-11 00:00:00
debian
debian
[SECURITY] [DSA 4974-1] nextcloud-desktop security update
2021-09-19 10:35:13
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0421)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-4974-1)
2021-09-20 00:00:00
nessus
nessus
Debian DSA-4974-1 : nextcloud-desktop - security update
2021-09-19 00:00:00
mageia
mageia
Updated nextcloud-client packages fix security vulnerability
2021-09-23 07:49:29