Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2020-8235

🗓️ 05 Oct 2020 14:13:15Reported by [email protected]Type 
nvd
 nvd🔗 web.nvd.nist.gov👁 8 Views

Missing access control in Nextcloud Deck 1.0.4, insecure direct object reference allowing attacker to view all attachment

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Prion		Improper access control
5 Oct 202014:15
prion
Hacker One		Nextcloud: Access control missing while viewing the attachments in the "All boards"
6 Jul 202013:35
hackerone
CVE		CVE-2020-8235
5 Oct 202014:15
cve
Nextcloud		Access control missing while viewing the attachments in the 'All boards' (NC-SA-2020-036)
15 Jul 202000:00
nextcloud
OSV		CVE-2020-8235
5 Oct 202014:15
osv
Cvelist		CVE-2020-8235
5 Oct 202013:16
cvelist
Nvd
Node
nextclouddeckMatch1.0.4

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
05 Oct 2020 14:15Current
CVSS24
CVSS34.3
EPSS0.00135
CWE-639
nextcloud deck 1.0.4access controlinsecure direct object referenceattachmentsattacker
8
.json
Report