The vulnerability of cloud-based software for creating and using Nextcloud data storage allows a hacker to induce a service failure.

The vulnerability of cloud-based software for creating and using Nextcloud storage solutions is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of cloud-based software for creating and using Nextcloud data storage allows a hacker to induce a service failure.

The vulnerability of cloud-based software for creating and using Nextcloud storage solutions is related to the use of a name with an incorrect reference. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability of cloud-based software for creating and using Nextcloud data storage allows a hacker to execute arbitrary code.

The vulnerability of cloud-based software for creating and using Nextcloud data storage solutions is related to the lack of security measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code on the target system remotely...

SUSE CVE-2023-28847

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. In Nextcloud Server 24.0.0 prior to 24.0.11 and 25.0.0 prior to 25.0.5; as well as Nextcloud Server Enterprise 23.0.0 prior to 23.0.12.6, 24.0.0 prior to 24.0.11, and 25.0.0 prior to 25.0.5; an attack...

Nextcloud Server 24.x < 24.0.11, 25.x < 25.0.5 Missing Brute Force Protection Vulnerability (GHSA-r5wf-xj97-3w7w)

Nextcloud Server is prone to a missing brute force protection vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2023-28847

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. In Nextcloud Server 24.0.0 prior to 24.0.11 and 25.0.0 prior to 25.0.5; as well as Nextcloud Server Enterprise 23.0.0 prior to 23.0.12.6, 24.0.0 prior to 24.0.11, and 25.0.0 prior to 25.0.5; an attack...

Default credentials

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. In Nextcloud Server 24.0.0 prior to 24.0.11 and 25.0.0 prior to 25.0.5; as well as Nextcloud Server Enterprise 23.0.0 prior to 23.0.12.6, 24.0.0 prior to 24.0.11, and 25.0.0 prior to 25.0.5; an attack...

CVE-2023-28847 Nextcloud Server missing brute force protection for passwords of password protected share links

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. In Nextcloud Server 24.0.0 prior to 24.0.11 and 25.0.0 prior to 25.0.5; as well as Nextcloud Server Enterprise 23.0.0 prior to 23.0.12.6, 24.0.0 prior to 24.0.11, and 25.0.0 prior to 25.0.5; an attack...

CVE-2023-28847 Nextcloud Server missing brute force protection for passwords of password protected share links

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. In Nextcloud Server 24.0.0 prior to 24.0.11 and 25.0.0 prior to 25.0.5; as well as Nextcloud Server Enterprise 23.0.0 prior to 23.0.12.6, 24.0.0 prior to 24.0.11, and 25.0.0 prior to 25.0.5; an attack...

CVE-2023-28847

CVE-2023-28847 affects Nextcloud Server and Enterprise Server. Description: an attacker could brute-force the password of a share link due to missing brute-force protection. Affected versions include Nextcloud Server 24.0.0–24.0.10, 25.0.0–25.0.4, and Enterprise 23.0.0–23.0.11, plus related 24.0....

CVE-2023-28847 Nextcloud Server missing brute force protection for passwords of password protected share links

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. In Nextcloud Server 24.0.0 prior to 24.0.11 and 25.0.0 prior to 25.0.5; as well as Nextcloud Server Enterprise 23.0.0 prior to 23.0.12.6, 24.0.0 prior to 24.0.11, and 25.0.0 prior to 25.0.5; an attack...

Missing brute force protection for passwords of password protected share links

None...

Nextcloud 安全漏洞

Nextcloud is an open source suite of self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A security vulnerability exists in Nextcloud Server that stems from an unrestricted ability to validate passwords for shared links. An attacker could use...

The vulnerability of cloud-based software for creating and using Nextcloud storage solutions is related to lack of access control measures, allowing attackers to gain unauthorized access to limited functions.

The vulnerability of cloud-based software for creating and using Nextcloud data storage solutions is related to lack of access control. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to limited functions of the system...

The vulnerability of cloud-based software for creating and using Nextcloud storage solutions allows a attacker to cause service failures.

The vulnerability of cloud-based software for creating and using Nextcloud storage solutions is related to an uncontrolled consumption of resources. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

Nextcloud: user_oidc app is missing bruteforce protection

The useroidc app in Nextcloud was missing bruteforce protection, allowing attackers to iterate over data until they find valid authentication credentials, potentially bypassing authentication...

Nextcloud Server Access Control Vulnerability (GHSA-3m2f-v8x7-9w99)

Nextcloud Server is prone to an access control vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

SUSE CVE-2023-30539

Nextcloud is a personal home server system. Depending on the set up tags and other workflows this issue can be used to limit access of others or being able to grant them access when there are system tag based files access control or files retention rules. It is recommended that the Nextcloud Serv...

Weak Encryption

nextcloud-desktop is vulnerable to Weak Encryption. The vulnerability allows a malicious server administrator to recover and modify contents of end-to-end encrypted files...

Weak Encryption

nextcloud-desktop is vulnerable to Weak Encryption. The vulnerability allows a malicious server administrator to recover and modify contents of end-to-end encrypted files...