ROS-20230413-01

🗓️ 13 Apr 2023 00:00:00Reported by RedosType

Nextcloud software vulnerability in secure browsing and resource consumption

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 18
Cvelist	CVE-2023-25816 nextcloud vulnerable to Uncontrolled Resource Consumption	24 Feb 202323:17	–	cvelist
Cvelist	CVE-2023-25821 Nextcloud download permissions can be changed by resharer	24 Feb 202323:39	–	cvelist
OpenVAS	Nextcloud Server 25.x < 25.0.3 DoS Vulnerability (GHSA-53q2-cm29-7j83)	14 Apr 202300:00	–	openvas
OpenVAS	Nextcloud Server 24.0.4 < 24.0.7, 25.x < 25.0.1 Improper Access Control Vulnerability (GHSA-7w6h-5qgw-4j94)	14 Apr 202300:00	–	openvas
OSV	CVE-2023-25816	25 Feb 202300:15	–	osv
OSV	CVE-2023-25821	25 Feb 202300:15	–	osv
Nextcloud	Download permissions can be changed by resharer	24 Feb 202307:17	–	nextcloud
Nextcloud	No password length restriction in reset password endpoint	24 Feb 202307:22	–	nextcloud
Vulnrichment	CVE-2023-25821 Nextcloud download permissions can be changed by resharer	24 Feb 202323:39	–	vulnrichment
Vulnrichment	CVE-2023-25816 nextcloud vulnerable to Uncontrolled Resource Consumption	24 Feb 202323:17	–	vulnrichment

OS	OS Version	Architecture	Package	Package Version	Filename
redos	7.3	x86_64	nextcloud	25.0.3-1	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Apr 2023 00:00Current

7High risk

Vulners AI Score7

CVSS35.7 - 7.5

EPSS0.00257

SSVC