Lucene search

CVE-2023-25160

🗓️ 13 Feb 2023 21:14:15Reported by [email protected]Type

Nextcloud Mail app enables unauthorized access by ID, upgrade for patche

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2023-25160 IDOR Vulnerability in Nextcloud Mail	13 Feb 202320:19	–	cvelist
Nextcloud	IDOR Vulnerability in Nextcloud Mail	13 Feb 202313:47	–	nextcloud
Prion	Design/Logic Flaw	13 Feb 202321:15	–	prion
OSV	CVE-2023-25160	13 Feb 202321:15	–	osv
Vulnrichment	CVE-2023-25160 IDOR Vulnerability in Nextcloud Mail	13 Feb 202320:19	–	vulnrichment
CVE	CVE-2023-25160	13 Feb 202321:15	–	cve

Nvd

Node

nextcloud mailRange<1.11.8

nextcloud mailRange1.12.0–1.12.9

nextcloud mailRange1.13.0–1.14.5

nextcloud mailRange2.0.0–2.2.1

Source	Link
github	www.github.com/nextcloud/security-advisories/security/advisories/GHSA-m45f-r5gh-h6cx
hackerone	www.hackerone.com/reports/1784681
github	www.github.com/nextcloud/mail/pull/7740

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Feb 2023 21:15Current

4.8Medium risk

Vulners AI Score4.8

CVSS35.3

EPSS0.00195

CWE-639