3 matches found
CVE-2023-25817
CVE-2023-25817 pertains to Nextcloud Server where versions 24.0.0 through 24.0.8 allow a user to escalate permissions and delete files they should only view or download. Root cause details are not explicitly provided in the initial document beyond the vulnerability description, but the fix is cle...
CVE-2023-25817 Delete permissions are not saved when creating public share in Nextcloud server
Nextcloud server is an open source, personal cloud implementation. In versions from 24.0.0 and before 24.0.9 a user could escalate their permissions to delete files they were not supposed to deletable but only viewed or downloaded. This issue has been addressed andit is recommended that the...
CVE-2023-25817 Delete permissions are not saved when creating public share in Nextcloud server
Nextcloud server is an open source, personal cloud implementation. In versions from 24.0.0 and before 24.0.9 a user could escalate their permissions to delete files they were not supposed to deletable but only viewed or downloaded. This issue has been addressed andit is recommended that the...