Code injection

2017-04-0520:59:00

PRIOn knowledge base

www.prio-n.com

4.5 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

17.4%

JSON

Nextcloud Server before 9.0.55 and 10.0.2 suffers from a creation of folders in read-only folders despite lacking permissions issue. Due to a logical error in the file caching layer an authenticated adversary is able to create empty folders inside a shared folder. Note that this only affects folders and files that the adversary has at least read-only permissions for.

CPENameOperatorVersion
nextcloud_serverge10.0.0
nextcloud_serverlt10.0.2
nextcloud_serverlt9.0.55

Name	Operator	Version
nextcloud_server	ge	10.0.0
nextcloud_server	lt	10.0.2
nextcloud_server	lt	9.0.55

References

hackerone.com/reports/169680

nextcloud.com/security/advisory/?id=nc-sa-2017-002