Nextcloud

354 tracked vulnerabilities.

CVE-2024-37316 MEDIUM
Nextcloud Calendar <4.6.8,4.7.2 - Open Redirect
Jun 14, 2024
CVSS 4.6
EPSS 0.00
CVE-2024-37315 LOW
Nextcloud Server < 23.0.12 - Improper Access Control
Jun 14, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-37314 LOW
Nextcloud Server < 25.0.7 - Improper Access Control
Jun 14, 2024
CVSS 3.5
EPSS 0.00
CVE-2024-37313 HIGH
Nextcloud Server < 21.0.9.17 - Authentication Bypass
Jun 14, 2024
CVSS 7.3
EPSS 0.00
CVE-2024-37312 MEDIUM
Nextcloud User Oidc < 5.0.0 - Improper Access Control
Jun 14, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-30247 CRITICAL
Nextcloudpi < 1.53.1 - OS Command Injection
Mar 29, 2024
CVSS 10.0
EPSS 0.01
CVE-2024-22404 MEDIUM
Nextcloud Files Zip <1.2.1-1.5.0 - Info Disclosure
Jan 18, 2024
CVSS 4.1
EPSS 0.01
CVE-2024-22402 MEDIUM
Nextcloud - Permissions Bypass
Jan 18, 2024
CVSS 5.4
EPSS 0.00
CVE-2024-22401 MEDIUM
Nextcloud Guests <2.4.1-3.0.1 - Privilege Escalation
Jan 18, 2024
CVSS 4.1
EPSS 0.00
CVE-2024-22403 LOW
Nextcloud <28.0.0 - Info Disclosure
Jan 18, 2024
CVSS 3.0
EPSS 0.00
CVE-2024-22400 LOW
Nextcloud <5.1.5-6.0.1 - Open Redirect
Jan 18, 2024
CVSS 3.1
EPSS 0.00
CVE-2024-22213 NONE
Nextcloud Deck <1.9.5,1.11.2 - XSS
Jan 18, 2024
EPSS 0.00
CVE-2024-22212 CRITICAL
Nextcloud - Privilege Escalation
Jan 18, 2024
CVSS 9.6
EPSS 0.01
CVE-2023-49792 MEDIUM
Nextcloud Server < 23.0.12.13 - Brute Force
Dec 22, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-49791 MEDIUM
Nextcloud Server < 23.0.12.13 - Improper Access Control
Dec 22, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-49790 MEDIUM
Nextcloud < 4.9.2 - Authentication Bypass
Dec 22, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-48308 LOW
Nextcloud Calendar <4.5.3 - Info Disclosure
Dec 22, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-48307 LOW
Nextcloud Mail < 2.2.8 - SSRF
Nov 21, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-48306 MEDIUM
Nextcloud Server < 22.2.10.16 - SSRF
Nov 21, 2023
CVSS 5.0
EPSS 0.01
CVE-2023-48305 MEDIUM
Nextcloud Server < 25.0.11 - Cleartext Storage
Nov 21, 2023
CVSS 4.2
EPSS 0.00
CVE-2023-48304 MEDIUM
Nextcloud Server < 22.2.10.16 - IDOR
Nov 21, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-48303 LOW
Nextcloud Server < 25.0.11 - Improper Access Control
Nov 21, 2023
CVSS 2.4
EPSS 0.00
CVE-2023-48302 LOW
Nextcloud Server < 25.0.13 - XSS
Nov 21, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-48301 LOW
Nextcloud Server < 25.0.13 - XSS
Nov 21, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-48239 HIGH
Nextcloud Server < 20.0.14.16 - Improper Access Control
Nov 21, 2023
CVSS 8.5
EPSS 0.01
Products
nextcloud_server 180 nextcloud 28 desktop 27 talk 20 deck 17 mail 15 calendar 9 richdocuments 8 user_oidc 7 contacts 7 nextcloud_enterprise_server 6 tables 5 group_folders 3 circles 3 notes 2 end-to-end_encryption 2 nextcloud_talk 2 guests 2 social 2 preferred_providers 2 server 2 openid_connect_user_backend 2 zipper 1 cookbook 1 dialogs 1 extract 1 files_access_control 1 global_site_selector 1 lookup-server 1 news 1
Quick Filters
Critical CVEs With Exploits In CISA KEV