Количество 2
Количество 2
CVE-2025-66550
Nextcloud Calendar is a calendar app for Nextcloud. Prior to 4.7.17 and 5.2.4, when a malicious user creates a calendar event with a crafted attachment that links to a download link of a file on the same Nextcloud server, the file would be downloaded without the user confirming the action. This vulnerability is fixed in 4.7.17 and 5.2.4.
ROS-20260129-73-0048
Уязвимость nextcloud-app-calendar
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-66550 Nextcloud Calendar is a calendar app for Nextcloud. Prior to 4.7.17 and 5.2.4, when a malicious user creates a calendar event with a crafted attachment that links to a download link of a file on the same Nextcloud server, the file would be downloaded without the user confirming the action. This vulnerability is fixed in 4.7.17 and 5.2.4. | CVSS3: 5.7 | 0% Низкий | 2 месяца назад |
 | ROS-20260129-73-0048 Уязвимость nextcloud-app-calendar | CVSS3: 5.7 | 0% Низкий | 12 дней назад |
Уязвимостей на страницу