Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2023-35173
HistoryJun 23, 2023 - 9:15 p.m.

CVE-2023-35173

2023-06-2321:15:09
Google
osv.dev
9
nextcloud
end-to-end encryption
api
metadata
file
accessibility
upgrade

AI Score

7.1

Confidence

Low

EPSS

0.001

Percentile

32.2%

JSON

Nextcloud End-to-end encryption app provides all the necessary APIs to implement End-to-End encryption on the client side. By providing an invalid meta data file, an attacker can make previously dropped files inaccessible. It is recommended that the Nextcloud End-to-end encryption app is upgraded to version 1.12.4 that contains the fix.

Related

prion 1
nvd 1
hackerone 1
cvelist 1
cve 1
nextcloud 1
prion
prion
Code injection
2023-06-23 21:15:00
nvd
nvd
CVE-2023-35173
2023-06-23 21:15:09
hackerone
hackerone
Nextcloud: End-to-end encrypted file-drops can be made inaccessible
2023-03-21 20:28:56
cvelist
cvelist
CVE-2023-35173 End-to-End encrypted file-drops can be made inaccessible
2023-06-23 20:50:15
cve
cve
CVE-2023-35173
2023-06-23 21:15:09
nextcloud
nextcloud
End-to-End encrypted file-drops can be made inaccessible
2023-06-22 06:13:38

AI Score

7.1

Confidence

Low

EPSS

0.001

Percentile

32.2%

JSON
Related for OSV:CVE-2023-35173
prion1nvd1hackerone1cvelist1cve1nextcloud1