Vulnerabilities > CVE-2020-8121 - Exposure of Resource to Wrong Sphere vulnerability in Nextcloud Server

047910
CVSS 5.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
NONE
network
low complexity
nextcloud
CWE-668
NVD
Published: 2020-02-04
Updated: 2020-02-11

Summary

A bug in Nextcloud Server 14.0.4 could expose more data in reshared link shares than intended by the sharer.

Vulnerable Configurations

Part Description Count
Application
Nextcloud
465

Common Weakness Enumeration (CWE)

References