exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 437

CVE-2020-8183

около 5 лет назад

A logic error in Nextcloud Server 19.0.0 caused a plaintext storage of ...

CVSS3: 7.5

EPSS: Низкий

CVE-2020-8173

около 5 лет назад

A too small set of random characters being used for encryption in Nextcloud Server 18.0.4 allowed decryption in shorter time than intended.

CVSS3: 2.2

EPSS: Низкий

CVE-2020-8173

около 5 лет назад

A too small set of random characters being used for encryption in Next ...

CVSS3: 2.2

EPSS: Низкий

CVE-2020-8155

больше 5 лет назад

An outdated 3rd party library in the Files PDF viewer for Nextcloud Server 18.0.2 caused a Cross-site scripting vulnerability when opening a malicious PDF.

CVSS3: 5.4

EPSS: Низкий

CVE-2020-8155

больше 5 лет назад

An outdated 3rd party library in the Files PDF viewer for Nextcloud Se ...

CVSS3: 5.4

EPSS: Низкий

CVE-2020-8154

больше 5 лет назад

An Insecure direct object reference vulnerability in Nextcloud Server 18.0.2 allowed an attacker to remote wipe devices of other users when sending a malicious request directly to the endpoint.

CVSS3: 7.7

EPSS: Низкий

CVE-2020-8154

больше 5 лет назад

An Insecure direct object reference vulnerability in Nextcloud Server ...

CVSS3: 7.7

EPSS: Низкий

CVE-2020-8152

около 5 лет назад

Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the public key to decrypt them later on.

CVSS3: 4.4

EPSS: Низкий

CVE-2020-8152

около 5 лет назад

Insufficient protection of the server-side encryption keys in Nextclou ...

CVSS3: 4.4

EPSS: Низкий

CVE-2020-8150

около 5 лет назад

A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files.

CVSS3: 4.1

EPSS: Низкий

CVE-2020-8150

около 5 лет назад

A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker t ...

CVSS3: 4.1

EPSS: Низкий

CVE-2020-8139

больше 5 лет назад

A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, and < 16.0.9 causes hide-download shares to be downloadable when appending /download to the URL.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-8139

больше 5 лет назад

A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, ...

CVSS3: 6.5

EPSS: Низкий

CVE-2020-8138

больше 5 лет назад

A missing check for IPv4 nested inside IPv6 in Nextcloud server < 17.0.1, < 16.0.7, and < 15.0.14 allowed a Server-Side Request Forgery (SSRF) vulnerability when subscribing to a malicious calendar URL.

CVSS3: 6.5

EPSS: Низкий

CVE-2020-8138

больше 5 лет назад

A missing check for IPv4 nested inside IPv6 in Nextcloud server < 17.0 ...

CVSS3: 6.5

EPSS: Низкий

CVE-2020-8133

около 5 лет назад

A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file.

CVSS3: 5.3

EPSS: Низкий

CVE-2020-8133

около 5 лет назад

A wrong generation of the passphrase for the encrypted block in Nextcl ...

CVSS3: 5.3

EPSS: Низкий

CVE-2020-8122

почти 6 лет назад

A missing check in Nextcloud Server 14.0.3 could give recipient the possibility to extend the expiration date of a share they received.

CVSS3: 4.3

EPSS: Низкий

CVE-2020-8122

почти 6 лет назад

A missing check in Nextcloud Server 14.0.3 could give recipient the po ...

CVSS3: 4.3

EPSS: Низкий

CVE-2020-8121

почти 6 лет назад

A bug in Nextcloud Server 14.0.4 could expose more data in reshared link shares than intended by the sharer.

CVSS3: 8.1

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-8183 A logic error in Nextcloud Server 19.0.0 caused a plaintext storage of ...	CVSS3: 7.5	0% Низкий	около 5 лет назад
CVE-2020-8173 A too small set of random characters being used for encryption in Nextcloud Server 18.0.4 allowed decryption in shorter time than intended.	CVSS3: 2.2	0% Низкий	около 5 лет назад
CVE-2020-8173 A too small set of random characters being used for encryption in Next ...	CVSS3: 2.2	0% Низкий	около 5 лет назад
CVE-2020-8155 An outdated 3rd party library in the Files PDF viewer for Nextcloud Server 18.0.2 caused a Cross-site scripting vulnerability when opening a malicious PDF.	CVSS3: 5.4	1% Низкий	больше 5 лет назад
CVE-2020-8155 An outdated 3rd party library in the Files PDF viewer for Nextcloud Se ...	CVSS3: 5.4	1% Низкий	больше 5 лет назад
CVE-2020-8154 An Insecure direct object reference vulnerability in Nextcloud Server 18.0.2 allowed an attacker to remote wipe devices of other users when sending a malicious request directly to the endpoint.	CVSS3: 7.7	1% Низкий	больше 5 лет назад
CVE-2020-8154 An Insecure direct object reference vulnerability in Nextcloud Server ...	CVSS3: 7.7	1% Низкий	больше 5 лет назад
CVE-2020-8152 Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the public key to decrypt them later on.	CVSS3: 4.4	0% Низкий	около 5 лет назад
CVE-2020-8152 Insufficient protection of the server-side encryption keys in Nextclou ...	CVSS3: 4.4	0% Низкий	около 5 лет назад
CVE-2020-8150 A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files.	CVSS3: 4.1	0% Низкий	около 5 лет назад
CVE-2020-8150 A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker t ...	CVSS3: 4.1	0% Низкий	около 5 лет назад
CVE-2020-8139 A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, and < 16.0.9 causes hide-download shares to be downloadable when appending /download to the URL.	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-8139 A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, ...	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-8138 A missing check for IPv4 nested inside IPv6 in Nextcloud server < 17.0.1, < 16.0.7, and < 15.0.14 allowed a Server-Side Request Forgery (SSRF) vulnerability when subscribing to a malicious calendar URL.	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-8138 A missing check for IPv4 nested inside IPv6 in Nextcloud server < 17.0 ...	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2020-8133 A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file.	CVSS3: 5.3	0% Низкий	около 5 лет назад
CVE-2020-8133 A wrong generation of the passphrase for the encrypted block in Nextcl ...	CVSS3: 5.3	0% Низкий	около 5 лет назад
CVE-2020-8122 A missing check in Nextcloud Server 14.0.3 could give recipient the possibility to extend the expiration date of a share they received.	CVSS3: 4.3	0% Низкий	почти 6 лет назад
CVE-2020-8122 A missing check in Nextcloud Server 14.0.3 could give recipient the po ...	CVSS3: 4.3	0% Низкий	почти 6 лет назад
CVE-2020-8121 A bug in Nextcloud Server 14.0.4 could expose more data in reshared link shares than intended by the sharer.	CVSS3: 8.1	0% Низкий	почти 6 лет назад

Уязвимостей на страницу