exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 409

CVE-2020-8117

больше 5 лет назад

Improper preservation of permissions in Nextcloud Server 14.0.3 causes ...

CVSS3: 4.3

EPSS: Низкий

CVE-2019-5451

почти 6 лет назад

Bypass lock protection in the Nextcloud Android app prior to version 3.6.1 allows accessing the files when repeatedly opening and closing the app in a very short time.

CVSS3: 4.6

EPSS: Низкий

CVE-2019-5449

почти 6 лет назад

A missing check in the Nextcloud Server prior to version 15.0.1 causes leaking of calendar event names when adding or modifying confidential or private events.

CVSS3: 4.3

EPSS: Низкий

CVE-2019-5449

почти 6 лет назад

A missing check in the Nextcloud Server prior to version 15.0.1 causes ...

CVSS3: 4.3

EPSS: Низкий

CVE-2019-15624

больше 5 лет назад

Improper Input Validation in Nextcloud Server 15.0.7 allows group admins to create users with IDs of system folders.

CVSS3: 4.9

EPSS: Низкий

CVE-2019-15624

больше 5 лет назад

Improper Input Validation in Nextcloud Server 15.0.7 allows group admi ...

CVSS3: 4.9

EPSS: Низкий

CVE-2019-15621

больше 5 лет назад

Improper permissions preservation in Nextcloud Server 16.0.1 causes sharees to be able to reshare with write permissions when sharing the mount point of a share they received, as a public link.

CVSS3: 6.5

EPSS: Низкий

CVE-2019-15621

больше 5 лет назад

Improper permissions preservation in Nextcloud Server 16.0.1 causes sh ...

CVSS3: 6.5

EPSS: Низкий

CVE-2019-15618

больше 5 лет назад

Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.

CVSS3: 4.8

EPSS: Низкий

CVE-2019-15618

больше 5 лет назад

Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a ...

CVSS3: 4.8

EPSS: Низкий

CVE-2019-15617

больше 5 лет назад

A missing check in Nextcloud Server 17.0.0 allowed an attacker to set up a new second factor when trying to login.

CVSS3: 5.4

EPSS: Низкий

CVE-2019-15617

больше 5 лет назад

A missing check in Nextcloud Server 17.0.0 allowed an attacker to set ...

CVSS3: 5.4

EPSS: Низкий

CVE-2019-15616

больше 5 лет назад

Dangling remote share attempts in Nextcloud 16 allow a DNS pollution when running long.

CVSS3: 4.3

EPSS: Низкий

CVE-2019-15616

больше 5 лет назад

Dangling remote share attempts in Nextcloud 16 allow a DNS pollution w ...

CVSS3: 4.3

EPSS: Низкий

CVE-2019-15613

больше 5 лет назад

A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file extension when checking file mimetypes.

CVSS3: 8

EPSS: Низкий

CVE-2019-15613

больше 5 лет назад

A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend t ...

CVSS3: 8

EPSS: Низкий

CVE-2019-15612

больше 5 лет назад

A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be correctly expired when the password of the user is reset.

CVSS3: 5.9

EPSS: Низкий

CVE-2019-15612

больше 5 лет назад

A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be c ...

CVSS3: 5.9

EPSS: Низкий

CVE-2018-3780

почти 7 лет назад

A missing sanitization of search results for an autocomplete field in NextCloud Server <13.0.5 could lead to a stored XSS requiring user-interaction. The missing sanitization only affected user names, hence malicious search results could only be crafted by authenticated users.

CVSS3: 5.4

EPSS: Низкий

CVE-2018-3780

почти 7 лет назад

A missing sanitization of search results for an autocomplete field in ...

CVSS3: 5.4

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2020-8117 Improper preservation of permissions in Nextcloud Server 14.0.3 causes ...	CVSS3: 4.3	0% Низкий	больше 5 лет назад
CVE-2019-5451 Bypass lock protection in the Nextcloud Android app prior to version 3.6.1 allows accessing the files when repeatedly opening and closing the app in a very short time.	CVSS3: 4.6	0% Низкий	почти 6 лет назад
CVE-2019-5449 A missing check in the Nextcloud Server prior to version 15.0.1 causes leaking of calendar event names when adding or modifying confidential or private events.	CVSS3: 4.3	0% Низкий	почти 6 лет назад
CVE-2019-5449 A missing check in the Nextcloud Server prior to version 15.0.1 causes ...	CVSS3: 4.3	0% Низкий	почти 6 лет назад
CVE-2019-15624 Improper Input Validation in Nextcloud Server 15.0.7 allows group admins to create users with IDs of system folders.	CVSS3: 4.9	0% Низкий	больше 5 лет назад
CVE-2019-15624 Improper Input Validation in Nextcloud Server 15.0.7 allows group admi ...	CVSS3: 4.9	0% Низкий	больше 5 лет назад
CVE-2019-15621 Improper permissions preservation in Nextcloud Server 16.0.1 causes sharees to be able to reshare with write permissions when sharing the mount point of a share they received, as a public link.	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2019-15621 Improper permissions preservation in Nextcloud Server 16.0.1 causes sh ...	CVSS3: 6.5	0% Низкий	больше 5 лет назад
CVE-2019-15618 Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a reflected XSS when starting the updater from a malicious location.	CVSS3: 4.8	0% Низкий	больше 5 лет назад
CVE-2019-15618 Missing escaping of HTML in the Updater of Nextcloud 15.0.5 allowed a ...	CVSS3: 4.8	0% Низкий	больше 5 лет назад
CVE-2019-15617 A missing check in Nextcloud Server 17.0.0 allowed an attacker to set up a new second factor when trying to login.	CVSS3: 5.4	0% Низкий	больше 5 лет назад
CVE-2019-15617 A missing check in Nextcloud Server 17.0.0 allowed an attacker to set ...	CVSS3: 5.4	0% Низкий	больше 5 лет назад
CVE-2019-15616 Dangling remote share attempts in Nextcloud 16 allow a DNS pollution when running long.	CVSS3: 4.3	0% Низкий	больше 5 лет назад
CVE-2019-15616 Dangling remote share attempts in Nextcloud 16 allow a DNS pollution w ...	CVSS3: 4.3	0% Низкий	больше 5 лет назад
CVE-2019-15613 A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file extension when checking file mimetypes.	CVSS3: 8	0% Низкий	больше 5 лет назад
CVE-2019-15613 A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend t ...	CVSS3: 8	0% Низкий	больше 5 лет назад
CVE-2019-15612 A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be correctly expired when the password of the user is reset.	CVSS3: 5.9	0% Низкий	больше 5 лет назад
CVE-2019-15612 A bug in Nextcloud Server 15.0.2 causes pending 2FA logins to not be c ...	CVSS3: 5.9	0% Низкий	больше 5 лет назад
CVE-2018-3780 A missing sanitization of search results for an autocomplete field in NextCloud Server <13.0.5 could lead to a stored XSS requiring user-interaction. The missing sanitization only affected user names, hence malicious search results could only be crafted by authenticated users.	CVSS3: 5.4	0% Низкий	почти 7 лет назад
CVE-2018-3780 A missing sanitization of search results for an autocomplete field in ...	CVSS3: 5.4	0% Низкий	почти 7 лет назад

Уязвимостей на страницу