Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-29000

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.7.0, by trusting that the...

6.5CVSS6.4AI score0.00388EPSS
Exploits0References3
NVD
NVD
added 2023/04/04 1:15 p.m.35 views

CVE-2023-29000

The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.7.0, by trusting that the server will return a certificate that belongs to the keypair of the user, a malicious server could get the desktop client to encrypt file...

6.5CVSS5.7AI score0.00388EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/04/04 12:53 p.m.6 views

CVE-2023-29000 Nextcloud Desktop client does not verify received singed certificate in end-to-end encryption

The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server. Starting with version 3.0.0 and prior to version 3.7.0, by trusting that the server will return a certificate that belongs to the keypair of the user, a malicious server could get the desktop client to encrypt file...

5.4CVSS6.2AI score0.00388EPSS
Exploits0References3
CVE
CVE
added 2023/04/04 12:53 p.m.75 views

CVE-2023-29000

The CVE-2023-29000 entry affects the Nextcloud Desktop Client. Starting with version 3.0.0 and prior to 3.7.0, the client trusts that the server certificate belongs to the user’s keypair, allowing a malicious server to cause the desktop client to encrypt files with an attacker-known key. The issu...

6.5CVSS5.6AI score0.00388EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder