Nextcloud Server — набор клиент-серверных программ для создания и использования хранилища данных.

Релизный цикл, информация об уязвимостях

Продукт: Nextcloud Server

Вендор: nextcloud

График релизов

Недавние уязвимости Nextcloud Server

Количество 440

CVE-2020-8293

около 5 лет назад

A missing input validation in Nextcloud Server before 20.0.2, 19.0.5, ...

CVSS3: 6.5

EPSS: Низкий

CVE-2020-8259

около 5 лет назад

Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the encryption keys.

CVSS3: 8.1

EPSS: Низкий

CVE-2020-8259

около 5 лет назад

Insufficient protection of the server-side encryption keys in Nextclou ...

CVSS3: 8.1

EPSS: Низкий

CVE-2020-8152

около 5 лет назад

Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the public key to decrypt them later on.

CVSS3: 4.4

EPSS: Низкий

CVE-2020-8152

около 5 лет назад

Insufficient protection of the server-side encryption keys in Nextclou ...

CVSS3: 4.4

EPSS: Низкий

CVE-2020-8150

около 5 лет назад

A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files.

CVSS3: 4.1

EPSS: Низкий

CVE-2020-8150

около 5 лет назад

A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker t ...

CVSS3: 4.1

EPSS: Низкий

CVE-2020-8133

около 5 лет назад

A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-8133

около 5 лет назад

A wrong generation of the passphrase for the encrypted block in Nextcl ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-8236

больше 5 лет назад

A wrong configuration in Nextcloud Server 19.0.1 incorrectly made the user feel the passwordless WebAuthn is also a two factor verification by asking for the PIN of the passwordless WebAuthn but not verifying it.

CVSS3: 6.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано 1
CVE-2020-8293 A missing input validation in Nextcloud Server before 20.0.2, 19.0.5, ...	CVSS3: 6.5	0% Низкий	около 5 лет назад
CVE-2020-8259 Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the encryption keys.	CVSS3: 8.1	0% Низкий	около 5 лет назад
CVE-2020-8259 Insufficient protection of the server-side encryption keys in Nextclou ...	CVSS3: 8.1	0% Низкий	около 5 лет назад
CVE-2020-8152 Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the public key to decrypt them later on.	CVSS3: 4.4	0% Низкий	около 5 лет назад
CVE-2020-8152 Insufficient protection of the server-side encryption keys in Nextclou ...	CVSS3: 4.4	0% Низкий	около 5 лет назад
CVE-2020-8150 A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files.	CVSS3: 4.1	0% Низкий	около 5 лет назад
CVE-2020-8150 A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker t ...	CVSS3: 4.1	0% Низкий	около 5 лет назад
CVE-2020-8133 A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file.	CVSS3: 5.3	0% Низкий	около 5 лет назад
CVE-2020-8133 A wrong generation of the passphrase for the encrypted block in Nextcl ...	CVSS3: 5.3	0% Низкий	около 5 лет назад
CVE-2020-8236 A wrong configuration in Nextcloud Server 19.0.1 incorrectly made the user feel the passwordless WebAuthn is also a two factor verification by asking for the PIN of the passwordless WebAuthn but not verifying it.	CVSS3: 6.8	0% Низкий	больше 5 лет назад

Уязвимостей на страницу