Vulnerabilities > Nextcloud > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-07-12 | CVE-2021-32733 | Cross-site Scripting vulnerability in Nextcloud Server Nextcloud Text is a collaborative document editing application that uses Markdown. | 6.1 |
| 2021-07-12 | CVE-2021-32725 | Unspecified vulnerability in Nextcloud Server Nextcloud Server is a Nextcloud package that handles data storage. | 5.3 |
| 2021-07-12 | CVE-2021-32689 | Unspecified vulnerability in Nextcloud Talk Nextcloud Talk is a fully on-premises audio/video and chat communication service. | 6.5 |
| 2021-07-12 | CVE-2021-32707 | Unspecified vulnerability in Nextcloud Mail Nextcloud Mail is a mail app for Nextcloud. | 4.3 |
| 2021-07-12 | CVE-2021-32703 | Nextcloud Server is a Nextcloud package that handles data storage. | 5.3 |
| 2021-07-12 | CVE-2021-32678 | Nextcloud Server is a Nextcloud package that handles data storage. | 5.3 |
| 2021-06-17 | CVE-2021-32694 | Unspecified vulnerability in Nextcloud Nextcloud Android app is the Android client for Nextcloud. | 5.5 |
| 2021-06-16 | CVE-2021-32676 | Unspecified vulnerability in Nextcloud Talk Nextcloud Talk is a fully on-premises audio/video and chat communication service. | 6.5 |
| 2021-06-11 | CVE-2021-22895 | Improper Certificate Validation vulnerability in multiple products Nextcloud Desktop Client before 3.3.1 is vulnerable to improper certificate validation due to lack of SSL certificate verification when using the "Register with a Provider" flow. | 5.9 |
| 2021-06-11 | CVE-2021-22896 | Missing Authorization vulnerability in Nextcloud Nextcloud Mail before 1.9.5 suffers from improper access control due to a missing permission check allowing other authenticated users to create mail aliases for other users. | 4.3 |