Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nextcloud nextcloud server 14.0.0 vulnerabilities and exploits
(subscribe to this query)
3.1
CVSSv3
CVE-2018-16463
A bug causing session fixation in Nextcloud Server before 14.0.0, 13.0.3 and 12.0.8 could potentially allow an malicious user to obtain access to password protected shares.
Nextcloud Nextcloud Server
Nextcloud Nextcloud Server 14.0.0
8.1
CVSSv3
CVE-2018-16466
Improper revalidation of permissions in Nextcloud Server before 14.0.0, 13.0.6 and 12.0.11 lead to not accepting access restrictions by acess tokens.
Nextcloud Nextcloud Server
Nextcloud Nextcloud Server 14.0.0
5.3
CVSSv3
CVE-2018-16467
A missing check in Nextcloud Server before 14.0.0 could give unauthorized access to the previews of single file password protected shares.
Nextcloud Nextcloud Server
5.7
CVSSv3
CVE-2018-16464
A missing access check in Nextcloud Server before 14.0.0 could lead to continued access to password protected link shares when the owner had changed the password.
Nextcloud Nextcloud Server
5.3
CVSSv3
CVE-2018-16465
Missing state in Nextcloud Server before 14.0.0 would not enforce the use of a second factor at login if the the provider of the second factor failed to load.
Nextcloud Nextcloud Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started