A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an malicious user to overwrite blocks in a file.
nextcloud nextcloud server 19.0.1