Nextcloud Server@14.0.0 Security Vulnerabilities and Issues — Nextcloud Server@14.0.0 CVE List

Lucene search

NextcloudNextcloud Server14.0.0

6 matches found

CVE•added 2020/02/04 8:15 p.m.•64 views

CVE-2020-8121

A bug in Nextcloud Server 14.0.4 could expose more data in reshared link shares than intended by the sharer.

8.1CVSS7.9AI score0.00437EPSS

CVE•added 2020/02/04 8:15 p.m.•58 views

CVE-2020-8117

Improper preservation of permissions in Nextcloud Server 14.0.3 causes the event details to be leaked when sharing a non-public event.

4.3CVSS4.5AI score0.00304EPSS

CVE•added 2020/02/04 8:15 p.m.•55 views

CVE-2019-15612

A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be correctly expired when the password of the user is reset.

5.9CVSS6AI score0.0018EPSS

CVE•added 2020/02/04 8:15 p.m.•55 views

CVE-2020-8122

A missing check in Nextcloud Server 14.0.3 could give recipient the possibility to extend the expiration date of a share they received.

4.3CVSS4.7AI score0.0029EPSS

CVE•added 2018/10/30 9:29 p.m.•44 views

CVE-2018-16463

A bug causing session fixation in Nextcloud Server prior to 14.0.0, 13.0.3 and 12.0.8 could potentially allow an attacker to obtain access to password protected shares.

3.6CVSS3.9AI score0.00132EPSS

CVE•added 2018/10/30 9:29 p.m.•44 views

CVE-2018-16466

Improper revalidation of permissions in Nextcloud Server prior to 14.0.0, 13.0.6 and 12.0.11 lead to not accepting access restrictions by acess tokens.

8.1CVSS7.9AI score0.00126EPSS