Vulnerabilities > Nextcloud

DATE CVE VULNERABILITY TITLE RISK
2023-02-27 CVE-2023-26041 Exposure of Resource to Wrong Sphere vulnerability in Nextcloud Talk
Nextcloud Talk is a fully on-premises audio/video and chat communication service.
network
low complexity
nextcloud CWE-668
4.3
2023-02-25 CVE-2023-25816 Resource Exhaustion vulnerability in Nextcloud Server 25.0.0/25.0.2
Nextcloud is an Open Source private cloud software.
network
low complexity
nextcloud CWE-400
6.5
2023-02-25 CVE-2023-25821 Unspecified vulnerability in Nextcloud Server
Nextcloud is an Open Source private cloud software.
network
low complexity
nextcloud
7.5
2023-02-22 CVE-2023-25579 Path Traversal vulnerability in Nextcloud Server
Nextcloud server is a self hosted home cloud product.
network
low complexity
nextcloud CWE-22
7.5
2023-02-13 CVE-2023-25160 Authorization Bypass Through User-Controlled Key vulnerability in Nextcloud Mail
Nextcloud Mail is an email app for the Nextcloud home server platform.
network
low complexity
nextcloud CWE-639
5.3
2023-02-13 CVE-2023-25161 Unspecified vulnerability in Nextcloud Server
Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform.
network
low complexity
nextcloud
5.3
2023-02-13 CVE-2023-25162 Server-Side Request Forgery (SSRF) vulnerability in Nextcloud Server
Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform.
network
low complexity
nextcloud CWE-918
5.3
2023-02-13 CVE-2023-25159 Unspecified vulnerability in Nextcloud Server and Richdocuments
Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform, and Nextcloud Office is a document collaboration app for the same platform.
network
low complexity
nextcloud
5.3
2023-02-08 CVE-2023-25150 Incorrect Permission Assignment for Critical Resource vulnerability in Nextcloud Richdocuments
Nextcloud office/richdocuments is an office suit for the nextcloud server platform.
network
low complexity
nextcloud CWE-732
5.7
2023-02-06 CVE-2023-23942 Cross-site Scripting vulnerability in Nextcloud Desktop
The Nextcloud Desktop Client is a tool to synchronize files from a Nextcloud Server with your computer.
network
low complexity
nextcloud CWE-79
6.1