Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nextcloud nextcloud server 14.0.0 vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2018-16465
Missing state in Nextcloud Server before 14.0.0 would not enforce the use of a second factor at login if the the provider of the second factor failed to load.
Nextcloud Nextcloud Server
8.1
CVSSv3
CVE-2018-16466
Improper revalidation of permissions in Nextcloud Server before 14.0.0, 13.0.6 and 12.0.11 lead to not accepting access restrictions by acess tokens.
Nextcloud Nextcloud Server
Nextcloud Nextcloud Server 14.0.0
5.3
CVSSv3
CVE-2018-16467
A missing check in Nextcloud Server before 14.0.0 could give unauthorized access to the previews of single file password protected shares.
Nextcloud Nextcloud Server
3.1
CVSSv3
CVE-2018-16463
A bug causing session fixation in Nextcloud Server before 14.0.0, 13.0.3 and 12.0.8 could potentially allow an malicious user to obtain access to password protected shares.
Nextcloud Nextcloud Server
Nextcloud Nextcloud Server 14.0.0
5.7
CVSSv3
CVE-2018-16464
A missing access check in Nextcloud Server before 14.0.0 could lead to continued access to password protected link shares when the owner had changed the password.
Nextcloud Nextcloud Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started