Lucene search

GoogleOSV:CVE-2023-25818

HistoryMar 27, 2023 - 8:15 p.m.

CVE-2023-25818

2023-03-2720:15:09

Google

osv.dev

nextcloud

server

password reset

vulnerability

fixed

versions

CVSS3

7.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

28.0%

JSON

Nextcloud server is an open source, personal cloud implementation. In affected versions a malicious user could try to reset the password of another user and then brute force the 62^21 combinations for the password reset token. As of commit 704eb3aa password reset attempts are now throttled. Note that 62^21 combinations would significant compute resources to brute force. None the less it is recommended that the Nextcloud Server is upgraded to 24.0.10 or 25.0.4. There are no known workarounds for this vulnerability.

References

github.com/nextcloud/security-advisories/security/advisories/GHSA-v243-x6jc-42mp

github.com/nextcloud/server/pull/36489

github.com/nextcloud/server/pull/36489/commits/704eb3aa6cecc0a646f5cca4290b595f493f9ed3

CVSS3

7.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N

AI Score

7.2

Confidence

High

EPSS

0.001

Percentile

28.0%

JSON

Related for OSV:CVE-2023-25818