Vulnerabilities > Nextcloud > Nextcloud Server > 19.0.13.9
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-18 | CVE-2024-22403 | Insufficient Session Expiration vulnerability in Nextcloud Server Nextcloud server is a self hosted personal cloud system. | 3.7 |
2023-08-10 | CVE-2023-39962 | Improper Access Control vulnerability in Nextcloud Server Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. | 7.7 |
2022-11-25 | CVE-2022-39346 | Resource Exhaustion vulnerability in multiple products Nextcloud server is an open source personal cloud server. | 6.5 |
2022-10-27 | CVE-2022-39329 | Missing Authorization vulnerability in Nextcloud Enterprise Server and Nextcloud Server Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. | 5.3 |
2022-09-15 | CVE-2022-36074 | Incorrect Authorization vulnerability in Nextcloud Enterprise Server and Nextcloud Server Nextcloud server is an open source personal cloud product. | 7.5 |
2022-07-05 | CVE-2022-31014 | Injection vulnerability in Nextcloud Server Nextcloud server is an open source personal cloud server. | 3.5 |
2022-04-27 | CVE-2022-24888 | Unspecified vulnerability in Nextcloud Server Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. | 4.3 |
2021-03-03 | CVE-2021-22878 | Cross-site Scripting vulnerability in multiple products Nextcloud Server prior to 20.0.6 is vulnerable to reflected cross-site scripting (XSS) due to lack of sanitization in `OC.Notification.show`. | 4.8 |
2021-03-03 | CVE-2021-22877 | Missing Authorization vulnerability in multiple products A missing user check in Nextcloud prior to 20.0.6 inadvertently populates a user's own credentials for other users external storage configuration when not already configured yet. | 6.5 |
2021-03-03 | CVE-2020-8296 | Weak Password Requirements vulnerability in multiple products Nextcloud Server prior to 20.0.0 stores passwords in a recoverable format even when external storage is not configured. | 6.7 |