CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

54 matches found

Positive Technologies•added 2023/02/09 12:0 a.m.•2 views

PT-2023-1525 · Trend Micro · Trend Micro Apex One

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex One affected versions not specified Description: A security issue in the Trend Micro Apex One agent could allow a local attacker to quarantine a file, delete the original folder, and replace it with a junction to an arbitrary...

7.8CVSS7.5AI score0.00071EPSS

Exploits0References10

CNVD•added 2022/03/14 12:0 a.m.•27 views

Nextcloud Information Disclosure Vulnerability (CNVD-2022-20155)

Nextcloud is a set of open source self-hosted file synchronization and sharing communication applications platform from Nextcloud Germany.A security vulnerability exists in Nextcloud Server, which is due to an issue with the Nextcloud Text application which is provided with Nextcloud Server by...

6.5CVSS1.4AI score0.00272EPSS

Exploits0References1

OSV•added 2022/03/10 9:15 p.m.•19 views

CVE-2021-41233

Nextcloud text is a collaborative document editing using Markdown built for the nextcloud server. Due to an issue with the Nextcloud Text application, which is by default shipped with Nextcloud Server, an attacker is able to access the folder names of "File Drop". For successful exploitation an...

5.3CVSS6.7AI score

Exploits0References2

NVD•added 2022/03/10 9:15 p.m.•10 views

CVE-2021-41233

6.5CVSS0.00272EPSS

Exploits0References2

Prion•added 2022/03/10 9:15 p.m.•21 views

Code injection

4.3CVSS5.2AI score0.00272EPSS

Exploits0References2Affected Software1

CVE•added 2022/03/10 8:30 p.m.•102 views

CVE-2021-41233

CVE-2021-41233 concerns Nextcloud Server where the default Nextcloud Text app contains an issue allowing an attacker to access the folder names in the “File Drop” area. Exploitation requires knowledge of a sharing link. Affected context and guidance across connected sources indicate upgrading Nex...

6.5CVSS5.3AI score0.00272EPSS

Exploits0References2Affected Software1

Cvelist•added 2022/03/10 8:30 p.m.•12 views

CVE-2021-41233 Missing authorization in Nextcloud text

6.5CVSS6.5AI score0.00272EPSS

Exploits0References2

Nextcloud•added 2022/03/10 1:8 p.m.•52 views

Folder names of "File Drop" share accessible

None...

6.5CVSS5.5AI score0.00272EPSS

Exploits0References2Affected Software1

Positive Technologies•added 2022/03/10 12:0 a.m.•5 views

PT-2022-11375 · Nextcloud +1 · Nextcloud Server +2

Name of the Vulnerable Software and Affected Versions: Nextcloud Server versions prior to 20.0.14 Nextcloud Server versions prior to 21.0.6 Nextcloud Server versions prior to 22.2.1 Description: The Nextcloud Text application, which is shipped with Nextcloud Server by default, has an issue that...

7.5CVSS5AI score0.02075EPSS

Exploits3References27

CNNVD•added 2022/03/10 12:0 a.m.•4 views

Nextcloud 信息泄露漏洞

6.5CVSS5.6AI score0.00272EPSS

Exploits0References4

Tenable Nessus•added 2021/09/15 12:0 a.m.•33 views

openSUSE 15 Security Update : nextcloud (openSUSE-SU-2021:1253-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1253-1 advisory. - Nextcloud Text is an open source plaintext editing application which ships with the nextcloud server. In affected versions the Nextcloud...

10CVSS6.7AI score0.02254EPSS

Exploits0References10

NVD•added 2021/09/07 9:15 p.m.•15 views

CVE-2021-32766

Nextcloud Text is an open source plaintext editing application which ships with the nextcloud server. In affected versions the Nextcloud Text application returned different error messages depending on whether a folder existed in a public link share. This is problematic in case the public link sha...

5.3CVSS0.00384EPSS

Exploits0References3

NVD•added 2021/09/07 9:15 p.m.•11 views

CVE-2021-37628

Nextcloud Richdocuments is an open source collaborative office suite. In affected versions the File Drop features "Upload Only" public link shares in Nextcloud can be bypassed using the Nextcloud Richdocuments app. An attacker was able to read arbitrary files in such a share. It is recommended th...

7.5CVSS0.00364EPSS

Exploits0References3

OSV•added 2021/09/07 9:15 p.m.•16 views

CVE-2021-32766

5.3CVSS6.4AI score

Exploits0References3

OSV•added 2021/09/07 9:15 p.m.•12 views

CVE-2021-37628

7.5CVSS6.7AI score

Exploits0References3

Prion•added 2021/09/07 9:15 p.m.•19 views

Design/Logic Flaw

5CVSS5AI score0.00384EPSS

Exploits0References3Affected Software1

Prion•added 2021/09/07 9:15 p.m.•18 views

Design/Logic Flaw

5CVSS7.4AI score0.00364EPSS

Exploits0References3Affected Software1

Cvelist•added 2021/09/07 9:5 p.m.•18 views

CVE-2021-32766 Nextcloud Text app can disclose existence of folders in "File Drop" link share

5.3CVSS7.3AI score0.00384EPSS

Exploits0References3

CVE•added 2021/09/07 9:5 p.m.•106 views

CVE-2021-32766

CVE-2021-32766 affects Nextcloud Text (bundled with Nextcloud Server). The issue: in affected versions, error messages differ based on whether a folder exists in a public File Drop share, allowing an attacker with a valid File Drop link to enumerate folders/files. Impact is information disclosure...

5.3CVSS7AI score0.00384EPSS

Exploits0References3Affected Software1

CVE•added 2021/09/07 8:15 p.m.•68 views

CVE-2021-37628

The CVE-2021-37628 affects Nextcloud Richdocuments, an open-source collaborative office suite, where the File Drop feature (Upload Only public link shares) can be bypassed via the Richdocuments app. An attacker could read arbitrary files in such a share, indicating a serious information-disclosur...

7.5CVSS7.4AI score0.00364EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by