Vulnerabilities > CVE-2020-8202 - Improper Restriction of Excessive Authentication Attempts vulnerability in Nextcloud Preferred Providers 1.6.0

047910
CVSS 5.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
LOW
network
low complexity
nextcloud
CWE-307
NVD
Published: 2020-07-30
Updated: 2020-08-03

Summary

Improper check of inputs in Nextcloud Preferred Providers app v1.6.0 allowed to perform a denial of service attack when using a very long password.

Vulnerable Configurations

Part Description Count
Application
Nextcloud
1

Common Weakness Enumeration (CWE)

References