Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.19 views

openSUSE Security Update : nextcloud (openSUSE-2019-511)

This update for nextcloud fixes the following issues : Security issues fixed : - CVE-2018-3761: Fix improper authentication on the OAuth2 token endpoint bsc1100344. - CVE-2018-3762: Fix improper checks of dropped permissions for incoming shares allowing a user to still request previews for files ...

8.1CVSS5.6AI score0.01657EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2018/07/12 12:0 a.m.19 views

openSUSE: Security Advisory for nextcloud (openSUSE-SU-2018:1924-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS6.2AI score0.01657EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/07/12 12:0 a.m.30 views

openSUSE Security Update : nextcloud (openSUSE-2018-712)

This update for nextcloud fixes the following issues : Security issues fixed : - CVE-2018-3761: Fix improper authentication on the OAuth2 token endpoint bsc1100344. - CVE-2018-3762: Fix improper checks of dropped permissions for incoming shares allowing a user to still request previews for files ...

8.1CVSS5.6AI score0.01657EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2018/07/11 9:7 p.m.71 views

Security update for nextcloud (moderate)

This update for nextcloud fixes the following issues: Security issues fixed: - CVE-2018-3761: Fix improper authentication on the OAuth2 token endpoint bsc1100344. - CVE-2018-3762: Fix improper checks of dropped permissions for incoming shares allowing a user to still request previews for files it...

2.1AI score0.01657EPSS
Exploits0References2
NVD
NVD
added 2018/07/05 4:29 p.m.24 views

CVE-2018-3761

Nextcloud Server before 12.0.8 and 13.0.3 suffer from improper authentication on the OAuth2 token endpoint. Missing checks potentially allowed handing out new tokens in case the OAuth2 client was partly compromised...

8.1CVSS8.2AI score0.01657EPSS
Exploits0References2
CVE
CVE
added 2018/07/05 4:0 p.m.66 views

CVE-2018-3761

Nextcloud Server before 12.0.8 and 13.0.3 is affected by an improper authentication flaw at the OAuth2 token endpoint. The root cause is missing checks that could allow issuing new tokens if the OAuth2 client was partly compromised. Public disclosures reference CVE-2018-3761, with vendor advisori...

8.1CVSS8AI score0.01657EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder