Vulnerabilities > Nextcloud

DATE CVE VULNERABILITY TITLE RISK
2021-09-07 CVE-2021-32800 Missing Authentication for Critical Function vulnerability in Nextcloud
Nextcloud server is an open source, self hosted personal cloud.
network
low complexity
nextcloud CWE-306
6.4
2021-09-07 CVE-2021-32801 Information Exposure Through Log Files vulnerability in Nextcloud
Nextcloud server is an open source, self hosted personal cloud.
local
low complexity
nextcloud CWE-532
2.1
2021-09-07 CVE-2021-32802 Inclusion of Functionality from Untrusted Control Sphere vulnerability in Nextcloud
Nextcloud server is an open source, self hosted personal cloud.
network
low complexity
nextcloud CWE-829
critical
10.0
2021-09-07 CVE-2021-32766 Information Exposure Through an Error Message vulnerability in Nextcloud
Nextcloud Text is an open source plaintext editing application which ships with the nextcloud server.
network
low complexity
nextcloud CWE-209
5.0
2021-09-07 CVE-2021-37628 Authorization Bypass Through User-Controlled Key vulnerability in Nextcloud Richdocuments
Nextcloud Richdocuments is an open source collaborative office suite.
network
low complexity
nextcloud CWE-639
5.0
2021-09-07 CVE-2021-37629 Allocation of Resources Without Limits or Throttling vulnerability in Nextcloud Richdocuments
Nextcloud Richdocuments is an open source collaborative office suite.
network
low complexity
nextcloud CWE-770
5.0
2021-09-07 CVE-2021-32782 Cross-site Scripting vulnerability in Nextcloud Circles
Nextcloud Circles is an open source social network built for the nextcloud ecosystem.
network
nextcloud CWE-79
3.5
2021-09-07 CVE-2021-37630 Authorization Bypass Through User-Controlled Key vulnerability in Nextcloud Circles
Nextcloud Circles is an open source social network built for the nextcloud ecosystem.
network
low complexity
nextcloud CWE-639
4.0
2021-09-07 CVE-2021-37631 Authorization Bypass Through User-Controlled Key vulnerability in Nextcloud Deck
Deck is an open source kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud.
network
low complexity
nextcloud CWE-639
4.0
2021-08-18 CVE-2021-37617 Untrusted Search Path vulnerability in Nextcloud Desktop
The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with a computer.
4.4