Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Cvelist
Cvelistadded 2022/09/06 6:10 p.m.15 views

CVE-2022-35931 Nextcloud Password Policy's generated passwords are not fully validated by HIBPValidator

Nextcloud Password Policy is an app that enables a Nextcloud server admin to define certain rules for passwords. Prior to versions 22.2.10, 23.0.7, and 24.0.3 the random password generator may, in very rare cases, generate common passwords that the validator itself would block. Upgrade Nextcloud...

2.7CVSS4.7AI score0.00144EPSS
Exploits0References2
Nextcloud
Nextcloudadded 2022/09/01 4:50 a.m.28 views

Generated passwords are not fully validated by HIBPValidator

None...

2.7CVSS4.5AI score0.00144EPSS
Exploits0References2Affected Software1
Hacker One
Hacker Oneadded 2022/06/20 9:28 a.m.25 views

Nextcloud: Generated passwords are not fully validated by HIBPValidator

Summary: If the Nextcloud server generates a secure random password e.g. for sharing files, the validation is checked before the shuffle function strshuffle is called. In very rare cases it could happen, that a password is validated by HIBPValidator before strshuffle, but would not validate after...

3.3CVSS0.7AI score0.00144EPSS
Exploits0
Rows per page
Query Builder