Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2024-52514

🗓️ 15 Nov 2024 18:15:30Reported by [email protected]Type 
nvd
 nvd🔗 web.nvd.nist.gov👁 27 Views

Nextcloud Server vulnerability allows unauthorized access to blocked file

Related
Detection
Refs
ReporterTitlePublishedViews
Family
BDU FSTEC		The vulnerability of cloud software for creating and using Nextcloud Server’s data storage solution is related to improper access control, allowing attackers to gain access to confidential information.
25 Nov 202400:00
bdu_fstec
Circl		CVE-2024-52514
15 Nov 202417:17
circl
CNNVD		Nextcloud 访问控制错误漏洞
15 Nov 202400:00
cnnvd
CNVD		Nextcloud Access Control Error Vulnerability
21 Nov 202400:00
cnvd
CVE		CVE-2024-52514
15 Nov 202417:06
cve
Cvelist		CVE-2024-52514 Nextcloud Server allows users to copy folder that contain files that are blocked by the files access control
15 Nov 202417:06
cvelist
EUVD		EUVD-2024-45928
3 Oct 202520:07
euvd
Nextcloud		User can copy folder that contain files that are blocked by the files access control
15 Nov 202413:15
nextcloud
Hacker One		Nextcloud: User can copy locked folders and gain access to the contents
4 Apr 202415:52
hackerone
OpenVAS		Nextcloud Server 27.x < 27.1.9, 28.x < 28.0.5 Access Control Vulnerability
21 Nov 202400:00
openvas
Rows per page
NVD
Node
nextcloudnextcloud_serverRange21.0.021.0.9.18enterprise
OR
nextcloudnextcloud_serverRange22.0.022.2.10.23enterprise
OR
nextcloudnextcloud_serverRange23.0.023.0.12.18enterprise
OR
nextcloudnextcloud_serverRange24.0.024.0.12.14enterprise
OR
nextcloudnextcloud_serverRange25.0.025.0.13.9enterprise
OR
nextcloudnextcloud_serverRange26.0.026.0.13.3enterprise
OR
nextcloudnextcloud_serverRange27.0.027.1.9-
OR
nextcloudnextcloud_serverRange27.0.027.1.9enterprise
OR
nextcloudnextcloud_serverRange28.0.028.0.5-
OR
nextcloudnextcloud_serverRange28.0.028.0.5enterprise

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Jun 2026 08:07Current
CVSS 3.13.5 - 4.1
EPSS0.00471
CWE-284
nextcloudservervulnerabilityunauthorized accessblocked filesupgrade
27