4.3
CVSSv3

CVE-2021-22896

Published: 11/06/2021 Updated: 22/06/2021
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
CVSS v3 Base Score: 4.3 | Impact Score: 1.4 | Exploitability Score: 2.8
VMScore: 356
Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N

Vulnerability Summary

Nextcloud Mail prior to 1.9.5 suffers from improper access control due to a missing permission check allowing other authenticated users to create mail aliases for other users.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

nextcloud nextcloud