Lucene search
GoogleOSV:CVE-2020-8223HistoryOct 05, 2020 - 2:15 p.m.
CVE-2020-8223
2020-10-0514:15:13
Google
osv.dev
5
A logic error in Nextcloud Server 19.0.0 caused a privilege escalation allowing malicious users to reshare with higher permissions than they got assigned themselves.
| CPE | Name | Operator | Version |
|---|---|---|---|
| server | eq | 15.0.0RC1 | |
| server | eq | 4.5.0beta4 | |
| server | eq | 5.0.0beta2 | |
| server | eq | 8.2beta1 | |
| server | eq | 11.0RC2 | |
| server | eq | 5.0.0RC1 | |
| server | eq | 16.0.0alpha1 | |
| server | eq | 6.0.0beta3 | |
| server | eq | 6.0.0RC2 | |
| server | eq | 14.0.0beta1 |
References
hackerone.com/reports/889243
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KC6HLX5SG4PZO6Y54D2LFJ4ATG76BKOP/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T7FX3O6SJE2S52I2HAA4DSTUIISP5BNA/
nextcloud.com/security/advisory/?id=NC-SA-2020-029
Related
nvd
nvd
CVE-2020-8223
2020-10-05 14:15:13
openvas
openvas
Nextcloud Server < 17.0.8, 18.x < 18.0.7, 19.0.0 Privilege Escalation Vulnerability (NC-SA-2020-029)
2020-10-30 00:00:00
Fedora: Security Advisory for nextcloud (FEDORA-2020-050aaa14f7)
2020-10-24 00:00:00
Fedora: Security Advisory for nextcloud (FEDORA-2020-c9863904de)
2020-10-21 00:00:00
cve
cve
CVE-2020-8223
2020-10-05 14:15:13
prion
prion
Privilege escalation
2020-10-05 14:15:00
nextcloud
nextcloud
Re-Sharing allows increase of privileges (NC-SA-2020-029)
2020-07-16 00:00:00
cvelist
cvelist
CVE-2020-8223
2020-10-05 13:16:48
hackerone
hackerone
Nextcloud: Re-Sharing allows increase of privileges
2020-06-02 11:23:03
fedora
fedora
[SECURITY] Fedora 33 Update: nextcloud-19.0.3-1.fc33
2020-10-23 22:24:15
[SECURITY] Fedora 32 Update: nextcloud-18.0.9-1.fc32
2020-10-19 16:58:39
nessus
nessus
Fedora 33 : nextcloud (2020-050aaa14f7)
2020-10-26 00:00:00
Fedora 32 : nextcloud (2020-c9863904de)
2020-10-20 00:00:00