Nextcloud

354 tracked vulnerabilities.

CVE-2025-64011 MEDIUM
Nextcloud Server - IDOR
Dec 12, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-66558 LOW
Nextcloud Twofactor WebAuthn <1.4.2, <2.4.1 - Info Disclosure
Dec 05, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-66557 MEDIUM
Nextcloud Deck <1.14.6-1.15.2 - Privilege Escalation
Dec 05, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-66556 LOW
Nextcloud talk <20.1.8-21.1.2 - Info Disclosure
Dec 05, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-66554 LOW
Nextcloud <5.5.4, <6.0.6, <7.2.5 - Info Disclosure
Dec 05, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-66553 MEDIUM
Nextcloud Tables <0.8.7 & 0.9.4 - Info Disclosure
Dec 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-66551 MEDIUM
Nextcloud Tables <0.8.6-0.9.3 - Privilege Escalation
Dec 05, 2025
CVSS 6.3
EPSS 0.00
CVE-2025-66549 LOW
Nextcloud Desktop <3.16.5 - Info Disclosure
Dec 05, 2025
CVSS 2.4
EPSS 0.00
CVE-2025-66548 LOW
Nextcloud Deck <1.12.7, 1.14.4, 1.15.1 - Info Disclosure
Dec 05, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-66545 LOW
Nextcloud <14.0.11, <15.3.12, <16.0.15, <17.0.14, <18.1.8, <19.1.8,...
Dec 05, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-66515 LOW
Nextcloud Approval <1.3.1, 2.5.0 - Privilege Escalation
Dec 05, 2025
CVSS 2.7
EPSS 0.00
CVE-2025-66514 LOW
Nextcloud Mail <5.5.3 - Stored XSS
Dec 05, 2025
CVSS 3.5
EPSS 0.00
CVE-2025-66513 MEDIUM
Nextcloud Tables <0.8.9, <0.9.6, <1.0.1 - Info Disclosure
Dec 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-66552 MEDIUM
Nextcloud Server <30.0.9-31.0.1 - Info Disclosure
Dec 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-66550 MEDIUM
Nextcloud Calendar <4.7.17-5.2.4 - Info Disclosure
Dec 05, 2025
CVSS 5.7
EPSS 0.00
CVE-2025-66547 MEDIUM
Nextcloud Server <31.0.1 - Info Disclosure
Dec 05, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-66546 LOW
Nextcloud Calendar <4.7.19, 5.5.6, 6.0.1 - Info Disclosure
Dec 05, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-66512 MEDIUM
Nextcloud Server <31.0.12-32.0.3 - Info Disclosure
Dec 05, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-66511 MEDIUM
Nextcloud Calendar <6.0.3 - Info Disclosure
Dec 05, 2025
CVSS 4.8
EPSS 0.00
CVE-2025-66510 MEDIUM
Nextcloud Server <32.0.1 - Info Disclosure
Dec 05, 2025
CVSS 4.5
EPSS 0.00
CVE-2025-47794 LOW
Nextcloud Server < 26.0.13.13 - Improper Access Control
May 16, 2025
CVSS 2.6
EPSS 0.00
CVE-2025-47793 MEDIUM
Nextcloud Group Folders < 16.0.11 - Resource Allocation Without Limits
May 16, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-47792 MEDIUM
Nextcloud Desktop < 3.15.0 - Improper Access Control
May 16, 2025
CVSS 5.0
EPSS 0.00
CVE-2025-47791 MEDIUM
Nextcloud Server < 28.0.13 - SSRF
May 16, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-47790 MEDIUM
Nextcloud Server < 26.0.13.15 - Authentication Bypass
May 16, 2025
CVSS 6.4
EPSS 0.00
Products
nextcloud_server 180 nextcloud 28 desktop 27 talk 20 deck 17 mail 15 calendar 9 richdocuments 8 user_oidc 7 contacts 7 nextcloud_enterprise_server 6 tables 5 group_folders 3 circles 3 notes 2 end-to-end_encryption 2 nextcloud_talk 2 guests 2 social 2 preferred_providers 2 server 2 openid_connect_user_backend 2 zipper 1 cookbook 1 dialogs 1 extract 1 files_access_control 1 global_site_selector 1 lookup-server 1 news 1
Quick Filters
Critical CVEs With Exploits In CISA KEV