Nextcloud Server up to 9.0.54/10.0.1 Shared Folder permission
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 4.7 | $0-$5k | 0.00 |
A vulnerability was found in Nextcloud Server up to 9.0.54/10.0.1 (Cloud Software). It has been rated as critical. Affected by this issue is an unknown code block of the component Shared Folder. The manipulation with an unknown input leads to a permission vulnerability. Using CWE to declare the problem leads to CWE-275. Impacted is integrity, and availability. CVE summarizes:
Nextcloud Server before 9.0.55 and 10.0.2 suffers from a creation of folders in read-only folders despite lacking permissions issue. Due to a logical error in the file caching layer an authenticated adversary is able to create empty folders inside a shared folder. Note that this only affects folders and files that the adversary has at least read-only permissions for.
The bug was discovered 04/05/2017. The weakness was shared 04/05/2017 (Website). The advisory is available at nextcloud.com. This vulnerability is handled as CVE-2017-0884 since 11/30/2016. The attack may be launched remotely. The requirement for exploitation is a simple authentication. The technical details are unknown and an exploit is not available. This vulnerability is assigned to T1222 by the MITRE ATT&CK project.
Upgrading to version 9.0.55 or 10.0.2 eliminates this vulnerability.
The entries 99318, 99315, 99316 and 99317 are related to this item.
Product
Type
Vendor
Name
Version
- 9.0.0
- 9.0.1
- 9.0.2
- 9.0.3
- 9.0.4
- 9.0.5
- 9.0.6
- 9.0.7
- 9.0.8
- 9.0.9
- 9.0.10
- 9.0.11
- 9.0.12
- 9.0.13
- 9.0.14
- 9.0.15
- 9.0.16
- 9.0.17
- 9.0.18
- 9.0.19
- 9.0.20
- 9.0.21
- 9.0.22
- 9.0.23
- 9.0.24
- 9.0.25
- 9.0.26
- 9.0.27
- 9.0.28
- 9.0.29
- 9.0.30
- 9.0.31
- 9.0.32
- 9.0.33
- 9.0.34
- 9.0.35
- 9.0.36
- 9.0.37
- 9.0.38
- 9.0.39
- 9.0.40
- 9.0.41
- 9.0.42
- 9.0.43
- 9.0.44
- 9.0.45
- 9.0.46
- 9.0.47
- 9.0.48
- 9.0.49
- 9.0.50
- 9.0.51
- 9.0.52
- 9.0.53
- 9.0.54
- 10.0.0
- 10.0.1
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB CVSS-B Score: 🔍VulDB CVSS-BT Score: 🔍
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 4.9VulDB Meta Temp Score: 4.8
VulDB Base Score: 5.4
VulDB Temp Score: 5.2
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 4.3
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: PermissionCWE: CWE-275 / CWE-266
CAPEC: 🔍
ATT&CK: 🔍
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | unlock | unlock | unlock | unlock |
|---|---|---|---|---|
| Today | unlock | unlock | unlock | unlock |
OpenVAS ID: 801810
OpenVAS Name: Nextcloud Server CVE-2017-0888 Content Spoofing Vulnerability (Windows)
OpenVAS File: 🔍
OpenVAS Family: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: Server 9.0.55/10.0.2
Timeline
11/30/2016 🔍04/05/2017 🔍
04/05/2017 🔍
04/05/2017 🔍
04/06/2017 🔍
08/25/2020 🔍
Sources
Advisory: nextcloud.comStatus: Not defined
Confirmation: 🔍
CVE: CVE-2017-0884 (🔍)
OSVDB: - CVE-2017-0884 - Nextcloud Server - Privilege Escalation Issue
See also: 🔍
Entry
Created: 04/06/2017 09:22Updated: 08/25/2020 22:22
Changes: 04/06/2017 09:22 (63), 08/25/2020 22:22 (3)
Complete: 🔍
No comments yet. Languages: en.
Please log in to comment.