Lucene search

CVE-2020-8228

🗓️ 05 Oct 2020 14:13:15Reported by [email protected]Type

The Preferred Providers app 1.7.0 has missing rate limit allowing unlimited password settin

Reporter	Title	Published	Views	Family All 9
CVE	CVE-2020-8228	5 Oct 202014:15	–	cve
Cvelist	CVE-2020-8228	5 Oct 202013:15	–	cvelist
Hacker One	Nextcloud: No rate limiting on sinup page	13 Jul 202011:14	–	hackerone
Prion	Design/Logic Flaw	5 Oct 202014:15	–	prion
OSV	CVE-2020-8228	5 Oct 202014:15	–	osv
Nextcloud	Missing rate limit on signup page (NC-SA-2020-033)	3 Aug 202000:00	–	nextcloud
SUSE Linux	Security update for nextcloud (moderate)	10 Oct 202000:00	–	suse
OpenVAS	openSUSE: Security Advisory for nextcloud (openSUSE-SU-2020:1652-1)	11 Oct 202000:00	–	openvas
Tenable Nessus	openSUSE Security Update : nextcloud (openSUSE-2020-1652)	12 Oct 202000:00	–	nessus

Nvd

Node

nextcloud preferred_providersMatch1.7.0

Node

opensuse backports_sleMatch15.0sp1

opensuse backports_sleMatch15.0sp2

opensuse leapMatch15.1

opensuse leapMatch15.2

Source	Link
nextcloud	www.nextcloud.com/security/advisory/
lists	www.lists.opensuse.org/opensuse-security-announce/2020-10/msg00019.html
hackerone	www.hackerone.com/reports/922470

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

05 Oct 2020 14:15Current

CVSS25

CVSS35.3

EPSS0.00217