CVE-2021-22877

Опубликовано: 03 мар. 2021

Источник: debian

EPSS Низкий

Описание

A missing user check in Nextcloud prior to 20.0.6 inadvertently populates a user's own credentials for other users external storage configuration when not already configured yet.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
nextcloud-server	itp			package

EPSS

Процентиль: 63%

0.00463

Низкий

Связанные уязвимости

CVE-2021-22877

CVSS3: 6.5

nvd

больше 4 лет назад

A missing user check in Nextcloud prior to 20.0.6 inadvertently populates a user's own credentials for other users external storage configuration when not already configured yet.

GHSA-v65r-wc6r-r9x8

CVSS3: 6.5

github

около 3 лет назад

A missing user check in Nextcloud prior to 20.0.6 inadvertently populates a user's own credentials for other users external storage configuration when not already configured yet.

EPSS

Процентиль: 63%

0.00463

Низкий