Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:0 a.m.7 views

CVE-2023-28645

Nextcloud richdocuments is a Nextcloud app integrating the office suit Collabora Online. In affected versions the secure view feature of the rich documents app can be bypassed by using unprotected internal API endpoint of the rich documents app. It is recommended that the Nextcloud Office app...

6.5CVSS6.7AI score0.00745EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/03/31 10:8 p.m.8 views

CVE-2023-28645 Secure view can be bypassed by using internal API endpoint in Nextcloud richdocuments

Nextcloud richdocuments is a Nextcloud app integrating the office suit Collabora Online. In affected versions the secure view feature of the rich documents app can be bypassed by using unprotected internal API endpoint of the rich documents app. It is recommended that the Nextcloud Office app...

5.7CVSS6.4AI score0.00745EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/03/31 12:0 a.m.5 views

PT-2023-21870 · Nextcloud · Nextcloud Richdocuments

Name of the Vulnerable Software and Affected Versions: Nextcloud richdocuments versions prior to 6.3.2 Nextcloud richdocuments versions prior to 7.0.2 Nextcloud richdocuments versions prior to 8.0.0-beta.1 Description: The secure view feature of the rich documents app can be bypassed by using an...

6.5CVSS6.2AI score0.00745EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/03/31 12:0 a.m.3 views

Nextcloud 访问控制错误漏洞

Nextcloud is an open source suite of self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. An access control error vulnerability exists in Nextcloud richdocuments. An attacker could exploit the vulnerability to bypass the secure view feature...

6.5CVSS6.5AI score0.00745EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/28 3:27 a.m.3 views

SUSE CVE-2023-25821

Nextcloud is an Open Source private cloud software. Versions 24.0.4 and above, prior to 24.0.7, and 25.0.0 and above, prior to 25.0.1, contain Improper Access Control. Secure view for internal shares can be circumvented if reshare permissions are also given. This issue is patched in versions 24.0...

7.5CVSS6.8AI score0.00946EPSS
Exploits1References3
Rows per page
Query Builder