Nextcloud Vulnerabilidades

Curso de tempo

Tipo

Cloud Software	181
Android App Software	20
Calendar Software	5
iOS App Software	2
Automation Software	1

Produto

Nextcloud Server	85
Nextcloud Enterprise Server	26
Nextcloud Talk	17
Nextcloud Desktop Client	17
Nextcloud App	16

Medidas

Official Fix	193
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	17

Explorabilidade

High	0
Functional	0
Proof-of-Concept	0
Unproven	0
Not Defined	210

Tipo de acesso

Not Defined	0
Physical	14
Local	20
Adjacent	10
Network	166

Autenticação

Not Defined	0
High	25
Low	138
None	47

Actividade do utilizador

Not Defined	0
Required	95
None	115

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	13
≤4	46
≤5	61
≤6	50
≤7	24
≤8	12
≤9	3
≤10	1

CVSSv3 Temp

≤1	0
≤2	0
≤3	18
≤4	42
≤5	62
≤6	51
≤7	27
≤8	6
≤9	3
≤10	1

VulDB

≤1	0
≤2	4
≤3	24
≤4	74
≤5	39
≤6	38
≤7	19
≤8	11
≤9	0
≤10	1

NVD

≤1	0
≤2	0
≤3	6
≤4	6
≤5	26
≤6	28
≤7	26
≤8	18
≤9	9
≤10	8

CNA

≤1	0
≤2	2
≤3	17
≤4	31
≤5	27
≤6	22
≤7	12
≤8	5
≤9	10
≤10	2

Fabricante

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explorar 0 dia

<1k	66
<2k	113
<5k	31
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explorar hoje

<1k	210
<2k	0
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explorar o volume do mercado

🔴 CTI Actividades

Affected Products (42): Android (1), App (16), App Extract (1), Calendar (4), Calendar App (1), Circle (1), Circles (1), Client (2), Collabra (1), Contacts (5), Cookbook (1), Deck (13), Desktop (4), Desktop Client (17), Dialogs Library (1), End-to-End Encryption (1), End-to-end Encryption App (1), Enterprise Server (28), Files (1), Files Access Control (1), Files Automated Tagging App (1), Files ZIP (1), Global Site Selector (1), Guests (2), Lookup-Server (1), Mail (11), Mail Application (1), NextcloudPi (1), Office (1), OfficeOnline (1), Office Richdocuments (1), Password Policy (1), Preferred Providers App (1), Richdocuments (4), Server (88), Social (1), Social App (1), Talk (17), Talk-Android (1), Text (2), User Saml (1), news-android (1)

Publicado em	Base	Temp	Vulnerabilidade	Prod	Exp	Mas	EPSS	CTI	CVE
29/03/2024	9.9	9.7	Nextcloud NextcloudPi Web-Panel direitos alargados	Cloud Software	Not Defined	Official Fix	0.00043	0.04	CVE-2024-30247
18/01/2024	4.2	4.2	NextCloud Files ZIP ZIP Archive direitos alargados	Cloud Software	Not Defined	Official Fix	0.00053	0.02	CVE-2024-22404
18/01/2024	5.9	5.7	NextCloud Guests Request URL Privilege Escalation	Cloud Software	Not Defined	Official Fix	0.00053	0.05	CVE-2024-22402
18/01/2024	4.2	4.2	NextCloud Guests Allowed Apps List direitos alargados	Cloud Software	Not Defined	Official Fix	0.00053	0.04	CVE-2024-22401
18/01/2024	3.9	3.9	NextCloud Deck Organization Roteiro Cruzado de Sítios	Cloud Software	Not Defined	Official Fix	0.00051	0.00	CVE-2024-22213
18/01/2024	4.1	4.1	NextCloud User Saml Link Redirect	Cloud Software	Not Defined	Official Fix	0.00052	0.00	CVE-2024-22400
18/01/2024	8.6	8.5	NextCloud Global Site Selector Fraca autenticação	Cloud Software	Not Defined	Official Fix	0.00097	0.04	CVE-2024-22212
18/01/2024	3.1	3.1	NextCloud Server OAuth2 Divulgação de Informação	Cloud Software	Not Defined	Official Fix	0.00051	0.00	CVE-2024-22403
22/12/2023	4.3	4.2	Nextcloud Files Fraca autenticação	iOS App Software	Not Defined	Official Fix	0.00046	0.02	CVE-2023-49790
22/12/2023	6.4	6.2	Nextcloud Server/Enterprise Server Fraca autenticação	Cloud Software	Not Defined	Official Fix	0.00053	0.02	CVE-2023-49791
22/12/2023	6.3	6.2	Nextcloud Server/Enterprise Server Divulgação de Informação	Cloud Software	Not Defined	Official Fix	0.00068	0.03	CVE-2023-49792
22/12/2023	4.2	4.2	Nextcloud Calendar Divulgação de Informação	Calendar Software	Not Defined	Official Fix	0.00049	0.00	CVE-2023-48308
22/11/2023	5.6	5.6	Nextcloud Mail direitos alargados	Cloud Software	Not Defined	Official Fix	0.00068	0.04	CVE-2023-48307
22/11/2023	4.1	4.1	Nextcloud Server/Enterprise Server HTML Code Roteiro Cruzado de Sítios	Cloud Software	Not Defined	Official Fix	0.00053	0.00	CVE-2023-48302
22/11/2023	3.1	3.0	Nextcloud Server/Enterprise Server user_ldap App Encriptação fraca	Cloud Software	Not Defined	Official Fix	0.00045	0.00	CVE-2023-48305
22/11/2023	7.3	7.2	Nextcloud Server/Enterprise Server External Storage direitos alargados	Cloud Software	Not Defined	Official Fix	0.00052	0.02	CVE-2023-48239
22/11/2023	4.1	4.1	Nextcloud Server/Enterprise Server Search UI Roteiro Cruzado de Sítios	Cloud Software	Not Defined	Official Fix	0.00051	0.00	CVE-2023-48301
22/11/2023	4.3	4.2	Nextcloud Server/Enterprise Server Birthday Calendar direitos alargados	Cloud Software	Not Defined	Official Fix	0.00051	0.03	CVE-2023-48304
22/11/2023	2.5	2.5	Nextcloud Server/Enterprise Server External Storage direitos alargados	Cloud Software	Not Defined	Official Fix	0.00053	0.00	CVE-2023-48303
22/11/2023	6.4	6.3	Nextcloud Server/Enterprise Server DNS Pin Middleware direitos alargados	Cloud Software	Not Defined	Official Fix	0.00068	0.03	CVE-2023-48306
16/10/2023	4.3	4.2	Nextcloud Calendar Email Address Negação de Serviço	Calendar Software	Not Defined	Official Fix	0.00051	0.00	CVE-2023-45150
16/10/2023	4.3	4.2	Nextcloud Mail Proxy Endpoint direitos alargados	Cloud Software	Not Defined	Official Fix	0.00053	0.02	CVE-2023-45660
16/10/2023	3.7	3.6	Nextcloud Talk Divulgação de Informação	Cloud Software	Not Defined	Official Fix	0.00053	0.00	CVE-2023-45149
16/10/2023	6.0	6.0	Nextcloud Server Encriptação fraca	Cloud Software	Not Defined	Official Fix	0.00060	0.03	CVE-2023-45151
13/10/2023	5.2	5.2	Nextcloud Server/Enterprise Server WebDAV API Divulgação de Informação	Cloud Software	Not Defined	Official Fix	0.00064	0.04	CVE-2023-39960

185 as entradas adicionais não são mais exibidas

🔒 Login Required

You need to signup and login to see more of the remaining 185 results.

◂ VoltarVisão GeralPróximo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!