Lucene search
K

1086 matches found

Cvelist
Cvelist
added 2026/06/01 4:38 p.m.32 views

CVE-2026-45155 Nextcloud: Private circle can be added to another circle via API

Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.7 and 33.0.0 to before 33.0.1, a missing access check on API level allowed to add unknown circles by their ID directly to other circles. Since circle IDs have 62^15 complexity by...

2.6CVSS0.002EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.22 views

PT-2026-45473

Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before 32.0.9, and 33.0.0 to before 33.0.3, when a malicious user has access to a file share of a user, they could use this share token to also access the chunking upload directly and see...

6.3CVSS5.7AI score0.00231EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.31 views

Nextcloud Server 访问控制错误漏洞

NextCloud Server is an open-source NextCloud server program. Versions of NextCloud Server from 32.0.0 to 32.0.9 and from 33.0.0 to 33.0.3 had a access control vulnerability due to improper sharing token access controls. This vulnerability could allow malicious users to access temporarily uploaded...

6.3CVSS5.3AI score0.00231EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.15 views

PT-2026-45538

Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.12, and 32.0.0 to before 32.0.3, a missing check of a relation allowed authenticated users with access to any file comment, to read the content of all comments. It is recommended th...

6.8CVSS5.7AI score0.00252EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.12 views

Nextcloud Server 授权问题漏洞

NextCloud Server is an open-source NextCloud server program developed by NextCloud. Versions of NextCloud Server from 32.0.0 to 32.0.9 and from 33.0.0 to 33.0.3 contained vulnerabilities related to authorization. These vulnerabilities stemmed from the possibility that the session cookie, which...

5.9CVSS5.3AI score0.0029EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.11 views

Nextcloud Server 授权问题漏洞

NextCloud Server is an open-source NextCloud server program. Versions of NextCloud Server from 32.0.0 to 32.0.9 and from 33.0.0 to 33.0.3 had authorization-related vulnerabilities. These vulnerabilities stemmed from authentication bypasses, allowing attackers who know the user’s password to...

5.9CVSS5.3AI score0.0029EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.13 views

Nextcloud Server 路径遍历漏洞

NextCloud Server is an open-source NextCloud server program developed by NextCloud. Versions of NextCloud Server from 31.0.0 to 31.0.14 and from 32.0.0 to 32.0.4 contained a path traversal vulnerability. This vulnerability occurred when the lang parameter was used in template directory...

6.5CVSS5.3AI score0.00392EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.21 views

PT-2026-45525

Name of the Vulnerable Software and Affected Versions Nextcloud Server versions 32.0.0 through 32.0.8 Nextcloud Server versions 33.0.0 through 33.0.2 Nextcloud Enterprise Server versions prior to 33.0.3 Nextcloud Enterprise Server versions prior to 32.0.9 Nextcloud Enterprise Server versions prio...

8.1CVSS5.8AI score0.00284EPSS
Exploits0References5
Wolfi
Wolfi
added 2026/05/21 1:48 a.m.14 views

GHSA-3QPQ-R242-JQJ7 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/05/21 1:48 a.m.17 views

CVE-2026-44167 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7.5CVSS5.8AI score0.00201EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/21 1:18 a.m.21 views

CVE-2026-44167 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7.5CVSS5.8AI score0.00201EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/21 1:18 a.m.12 views

GHSA-3QPQ-R242-JQJ7 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/04/28 7:48 p.m.14 views

CVE-2026-40194 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

3.7CVSS5.1AI score0.00334EPSS
Exploits0
Wolfi
Wolfi
added 2026/04/28 7:48 p.m.16 views

GHSA-R854-JRXH-36QX vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.2AI score
Exploits0
Wolfi
Wolfi
added 2026/04/28 7:48 p.m.16 views

GHSA-94G3-G5V7-Q4JG vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.2AI score
Exploits0
Wolfi
Wolfi
added 2026/04/28 7:48 p.m.15 views

GHSA-27QH-8CXX-2CR5 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.2AI score
Exploits0
Wolfi
Wolfi
added 2026/04/28 7:48 p.m.14 views

CVE-2026-32935 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

8.2CVSS5AI score0.00374EPSS
Exploits0
Chainguard
Chainguard
added 2026/04/28 7:17 p.m.7 views

GHSA-R854-JRXH-36QX vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.2AI score
Exploits0
Chainguard
Chainguard
added 2026/04/28 7:17 p.m.9 views

CVE-2026-40194 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

3.7CVSS5.1AI score0.00334EPSS
Exploits0
Chainguard
Chainguard
added 2026/04/28 7:17 p.m.7 views

GHSA-27QH-8CXX-2CR5 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

5.2AI score
Exploits0
Rows per page
Query Builder