Lucene search
K

4999 matches found

Fedora
Fedora
added 2026/01/31 5:14 p.m.7 views

[SECURITY] Fedora 42 Update: qownnotes-26.1.7-4.fc42

QOwnNotes is the open source notepad with Markdown support and todo list mana ger for GNU/Linux, macOS and Windows, that works together with Nextcloud Notes and ownCloud Notes. You are able to write down your thoughts with QOwnNotes and edit or search for them later from your mobile device, like...

8.6CVSS5.9AI score0.00281EPSS
Exploits1
Redos
Redos
added 2026/01/29 12:0 a.m.10 views

ROS-20260129-73-0046

Vulnerability in nextcloud related to flaws in access to personal information. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

4.9CVSS5.9AI score0.00302EPSS
Exploits0
Redos
Redos
added 2026/01/29 12:0 a.m.7 views

ROS-20260129-73-0045

Vulnerability in nextcloud related to bugs in security settings. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

4.3CVSS5.9AI score0.00269EPSS
Exploits0
Redos
Redos
added 2026/01/29 12:0 a.m.14 views

ROS-20260129-73-0048

Vulnerability in nextcloud-app-calendar related to improper handling of an unexpected data type. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.7CVSS5.9AI score0.00288EPSS
Exploits0
Redos
Redos
added 2026/01/29 12:0 a.m.6 views

ROS-20260129-73-0047

Vulnerability in nextcloud related to authorization bypass through the use of a user-controlled key. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...

4.3CVSS5.9AI score0.00242EPSS
Exploits0
Redos
Redos
added 2026/01/29 12:0 a.m.7 views

ROS-20260129-73-0050

Vulnerability in nextcloud-app-contacts related to failure to take measures to protect web page structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

5.4CVSS6.2AI score0.00212EPSS
Exploits0
Redos
Redos
added 2026/01/29 12:0 a.m.7 views

ROS-20260129-73-0049

Vulnerability in nextcloud-app-calendar related to the use of insufficiently randomized values. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

6.5CVSS5.9AI score0.00255EPSS
Exploits0
Chainguard
Chainguard
added 2026/01/28 1:17 p.m.18 views

CVE-2025-66552 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

4.3CVSS5.9AI score0.00269EPSS
Exploits0
Chainguard
Chainguard
added 2026/01/28 1:17 p.m.14 views

CVE-2025-66547 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

4.3CVSS5.9AI score0.00242EPSS
Exploits0
Fedora
Fedora
added 2026/01/27 4:53 a.m.9 views

[SECURITY] Fedora 43 Update: qownnotes-26.1.7-4.fc43

QOwnNotes is the open source notepad with Markdown support and todo list mana ger for GNU/Linux, macOS and Windows, that works together with Nextcloud Notes and ownCloud Notes. You are able to write down your thoughts with QOwnNotes and edit or search for them later from your mobile device, like...

8.6CVSS5.9AI score0.00281EPSS
Exploits0
Hacker One
Hacker One
added 2026/01/23 4:7 a.m.11 views

Nextcloud: View-only guests could see deleted Collectives pages in the trashbin

A vulnerability was discovered where view-only guests could see deleted Collectives pages in the trashbin...

2.6CVSS5.8AI score0.00189EPSS
Exploits0
Hacker One
Hacker One
added 2026/01/21 3:7 a.m.10 views

Nextcloud: IDOR on ██████ via direct photo URL leads to unauthorized access to deleted and other users' photos

Summary: An Insecure Direct Object Reference IDOR vulnerability exists in the application that allows unauthorized access to photos belonging to other users. The application does not properly validate whether the logged-in user is authorized to access a photo when accessing it via direct URL. Thi...

5.9AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/20 12:0 a.m.2 views

PT-2026-23549

Name of the Vulnerable Software and Affected Versions OpenClaw Nextcloud Talk plugin versions prior to 2026.2.6 Description The Nextcloud Talk plugin allows attackers to bypass direct message DM and room allowlists. The plugin incorrectly uses the mutable actor.name field for allowlist validation...

10CVSS5.8AI score0.00489EPSS
Exploits0References18
Hacker One
Hacker One
added 2026/01/16 4:43 a.m.12 views

Nextcloud: Private circle can be added to another circle via API despite visibility restriction

A vulnerability was discovered where private circles could be added to other circles via the API, despite visibility restrictions...

2.6CVSS5.8AI score0.002EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/15 7:48 p.m.16 views

CVE-2025-14761 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

6CVSS7AI score0.00176EPSS
Exploits0
Wolfi
Wolfi
added 2026/01/15 7:48 p.m.7 views

GHSA-X8CP-JF6F-R4XH vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7AI score
Exploits0
Chainguard
Chainguard
added 2026/01/15 7:17 p.m.4 views

GHSA-X8CP-JF6F-R4XH vulnerabilities

Vulnerabilities for packages: nextcloud-server...

7AI score
Exploits0
Chainguard
Chainguard
added 2026/01/15 7:17 p.m.12 views

CVE-2025-14761 vulnerabilities

Vulnerabilities for packages: nextcloud-server...

6CVSS7AI score0.00176EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.11 views

CVE-2021-22912

Nextcloud iOS before 3.4.2 suffers from an information disclosure vulnerability when searches for sharees utilize the lookup server by default instead of only on the local Nextcloud server unless a global search has been explicitly chosen by the user...

6.5CVSS6.1AI score0.01367EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 11:20 a.m.8 views

CVE-2021-22913

Nextcloud Deck before 1.2.7, 1.4.1 suffers from an information disclosure vulnerability when searches for sharees utilize the lookup server by default instead of only the local Nextcloud server unless a global search has been explicitly chosen by the user...

6.5CVSS6.3AI score0.01368EPSS
Exploits0References1
Rows per page
Query Builder