Lucene search
K

61 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:31 a.m.7 views

CVE-2019-5451

Bypass lock protection in the Nextcloud Android app prior to version 3.6.1 allows accessing the files when repeatedly opening and closing the app in a very short time...

4.6CVSS6.8AI score0.00385EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:30 a.m.5 views

CVE-2019-5452

Bypass lock protection in the Nextcloud Android app prior to version 3.6.2 causes leaking of thumbnails when requesting the Android content provider although the lock protection was not solved...

2.4CVSS6.7AI score0.00434EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:19 a.m.7 views

CVE-2019-5450

Improper sanitization of HTML in directory names in the Nextcloud Android app prior to version 3.7.0 allowed to style the directory name in the header bar when using basic HTML...

6.8CVSS6.5AI score0.00495EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:4 a.m.13 views

CVE-2019-15622

Not strictly enough sanitization in the Nextcloud Android app 3.6.0 allowed an attacker to get content information from protected tables when using custom queries...

2.4CVSS6.4AI score0.00507EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2023/03/30 6:16 p.m.7 views

CVE-2023-28646 App lockout in nextcloud Android app can be bypassed via thirdparty apps

Nextcloud android is an android app for interfacing with the nextcloud home server ecosystem. In versions from 3.7.0 and before 3.24.1 an attacker that has access to the unlocked physical device can bypass the Nextcloud Android Pin/passcode protection via a thirdparty app. This allows to see meta...

4.4CVSS4.3AI score0.00229EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/03/30 12:0 a.m.4 views

Nextcloud Android app 安全漏洞

The Nextcloud Android app is an Android-based mobile application for accessing Nextcloud servers from Nextcloud Germany. A security vulnerability exists in Nextcloud android version 3.7.0 up to and including version 3.24.1, which stems from the ability to bypass Nextcloud Android Pin/passcode...

4.4CVSS4.8AI score0.00229EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/03/30 12:0 a.m.4 views

PT-2023-21871 · Nextcloud · Nextcloud Android App

Name of the Vulnerable Software and Affected Versions: Nextcloud Android versions 3.7.0 through 3.24.0 Description: The Nextcloud Android app has a security issue that allows an attacker with access to an unlocked physical device to bypass the Pin/passcode protection using a third-party app. This...

4.4CVSS3.4AI score0.00229EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/09/17 12:0 a.m.4 views

Nextcloud Android app 路径遍历漏洞

The Nextcloud Android app is an Android-based mobile application for accessing Nextcloud servers from Nextcloud Germany. A path traversal vulnerability exists in versions of the Nextcloud Android app prior to 3.21.0, which stems from an improperly protected internal path to an application file,...

5.5CVSS5.7AI score0.003EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/04/27 1:30 p.m.7 views

CVE-2022-24886 Exposure of Sensitive Information to an Unauthorized Actor in com.nextcloud.client

Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. In versions prior to 3.19.0, any application with notification permission can access contacts if Nextcloud has access to Contacts without applying for the Contacts permission itself. Version 3.19.0...

2.2CVSS4.1AI score0.00373EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/04/27 12:0 a.m.6 views

PT-2022-16956 · Nextcloud · Nextcloud Android App

Name of the Vulnerable Software and Affected Versions: Nextcloud Android app versions prior to 3.19.0 Description: The issue allows any application with notification permission to access contacts if Nextcloud has access to Contacts, without the application needing to apply for the Contacts...

3.8CVSS4AI score0.00373EPSS
Exploits0References7
CNNVD
CNNVD
added 2022/04/27 12:0 a.m.28 views

Nextcloud Android app 信息泄露漏洞

Nextcloud Android app is an Android-based mobile application for accessing Nextcloud servers from the German company Nextcloud. nextcloud Android app versions prior to 3.19.0 are vulnerable to an information disclosure vulnerability that stems from insufficient privilege restrictions. An attacker...

3.8CVSS5.6AI score0.00373EPSS
Exploits0References5
NVD
NVD
added 2022/01/26 11:15 p.m.26 views

CVE-2021-41166

The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. An issue in versions prior to 3.17.1 may lead to sensitive information disclosure. An unauthorized app that does not have the otherwise required MANAGEDOCUMENTS permission may view image thumbnails...

5.3CVSS0.00948EPSS
Exploits0References4
Prion
Prion
added 2022/01/26 11:15 p.m.21 views

Information disclosure

The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. An issue in versions prior to 3.17.1 may lead to sensitive information disclosure. An unauthorized app that does not have the otherwise required MANAGEDOCUMENTS permission may view image thumbnails...

5CVSS4.9AI score0.00948EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2022/01/26 10:35 p.m.5 views

CVE-2021-41166 Permission bypass in Nextcloud Android App

The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. An issue in versions prior to 3.17.1 may lead to sensitive information disclosure. An unauthorized app that does not have the otherwise required MANAGEDOCUMENTS permission may view image thumbnails...

4.3CVSS6.5AI score0.00948EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/01/26 10:35 p.m.27 views

CVE-2021-41166 Permission bypass in Nextcloud Android App

The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. An issue in versions prior to 3.17.1 may lead to sensitive information disclosure. An unauthorized app that does not have the otherwise required MANAGEDOCUMENTS permission may view image thumbnails...

4.3CVSS5.1AI score0.00948EPSS
Exploits0References4
Nextcloud
Nextcloud
added 2022/01/26 7:21 p.m.54 views

Permission bypass in DiskLruImageCacheFileProvider (GHSL-2021-1008)

None...

5.3CVSS5.6AI score0.00948EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2022/01/26 12:0 a.m.7 views

Nextcloud Android app 信息泄露漏洞

Nextcloud Android app is an Android-based mobile application for accessing Nextcloud servers from the German company Nextcloud. information disclosure in versions of Nextcloud Android app prior to 3.17.1, the vulnerability stems from a network system or product that has a configuration and other...

5.3CVSS5.6AI score0.00948EPSS
Exploits0References6
OSV
OSV
added 2022/01/25 4:15 p.m.20 views

CVE-2021-43863

The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. The Nextcloud Android app uses content providers to manage its data. Prior to version 3.18.1, the providers FileContentProvider and DiskLruImageCacheFileProvider have security issues an SQL...

7.5CVSS7.8AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/01/25 3:25 p.m.6 views

CVE-2021-43863 SQL Injection in FileContentProvider (GHSL-2021-1007)

The Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. The Nextcloud Android app uses content providers to manage its data. Prior to version 3.18.1, the providers FileContentProvider and DiskLruImageCacheFileProvider have security issues an SQL...

7.5CVSS7.8AI score0.01874EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/01/25 12:0 a.m.3 views

Nextcloud Android app SQL注入漏洞

Nextcloud Android app is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. nextcloud Android app is vulnerable to SQL injection, a vulnerability that stems from the lack of validation of externally entered SQL statements in database-based applications. An...

7.5CVSS6AI score0.01874EPSS
Exploits0References4
Rows per page
Query Builder