Lucene search
+L

4 matches found

openvas
openvas
added 2023/02/15 12:0 a.m.15 views

Nextcloud Server < 23.0.12, 24.x < 24.0.8, 25.x < 25.0.1 Improper Access Control (GHSA-492h-596q-xr2f)

Nextcloud Server is prone to an improper access control vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.3CVSS5.3AI score0.00729EPSS
Exploits0References1
circl
circl
added 2023/02/14 12:30 a.m.5 views

CVE-2023-25161

creationtimestamp| type| source ---|---|--- 2023-02-14 00:30:16+00:00| seen| https://t.me/cibsecurity/58041...

5.3CVSS5.4AI score0.00729EPSS
Exploits0References1
nvd
nvd
added 2023/02/13 9:15 p.m.27 views

CVE-2023-25161

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. Nextcloud Server and Nextcloud Enterprise Server prior to versions 25.0.1 24.0.8, and 23.0.12 missing rate limiting on password reset functionality. This could result in service slowdown, storage...

5.3CVSS4.9AI score0.00729EPSS
Exploits0References3
cve
cve
added 2023/02/13 8:22 p.m.64 views

CVE-2023-25161

CVE-2023-25161 affects Nextcloud Server (and Enterprise Server) with missing rate limiting on the password reset function prior to versions 25.0.1, 24.0.8, and 23.0.12. The root issue is lack of rate limiting, which can cause service slowdown, storage overflow, or cost impact when external email ...

5.3CVSS4.8AI score0.00729EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder