Nextcloud

354 tracked vulnerabilities.

CVE-2023-45150 MEDIUM
Nextcloud Calendar < 4.4.4 - Denial of Service
Oct 16, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-45149 MEDIUM
Nextcloud Talk < 15.0.8 - Brute Force
Oct 16, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-45660 MEDIUM
Nextcloud Mail < 2.2.8 - SSRF
Oct 16, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-45151 MEDIUM
Nextcloud Server < 25.0.8 - Cleartext Storage
Oct 16, 2023
CVSS 6.5
EPSS 0.01
CVE-2023-45148 MEDIUM
Nextcloud Server < 22.2.10.16 - Brute Force
Oct 16, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-39960 MEDIUM
Nextcloud Server < 22.2.10.14 - Brute Force
Oct 13, 2023
CVSS 5.0
EPSS 0.00
CVE-2023-39963 HIGH
Nextcloud Server < 20.0.14.15 - Improper Access Control
Aug 10, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-39962 HIGH
Nextcloud Server < 19.0.13.10 - Improper Access Control
Aug 10, 2023
CVSS 7.7
EPSS 0.00
CVE-2023-39961 LOW
Nextcloud Server < 25.0.9 - Improper Access Control
Aug 10, 2023
CVSS 3.5
EPSS 0.00
CVE-2023-39959 LOW
Nextcloud Server < 25.0.9 - Improper Access Control
Aug 10, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-39958 MEDIUM
Nextcloud Server < 22.2.10.14 - Brute Force
Aug 10, 2023
CVSS 5.8
EPSS 0.00
CVE-2023-39957 HIGH
Nextcloud Talk < 17.0.0 - Path Traversal
Aug 10, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-39955 LOW
Nextcloud Notes < 4.8.0 - XSS
Aug 10, 2023
CVSS 3.5
EPSS 0.01
CVE-2023-39954 LOW
Nextcloud User Oidc < 1.3.3 - Missing Encryption
Aug 10, 2023
CVSS 3.8
EPSS 0.00
CVE-2023-39953 MEDIUM
user_oidc <1.3.3 - Man-in-the-Middle
Aug 10, 2023
CVSS 4.8
EPSS 0.00
CVE-2023-39952 MEDIUM
Nextcloud Server < 22.2.10.13 - Improper Access Control
Aug 10, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-35928 HIGH
Nextcloud Server <26.0.2 - Info Disclosure
Jun 23, 2023
CVSS 8.4
EPSS 0.00
CVE-2023-35927 HIGH
NextCloud Server <26.0.2 - Privilege Escalation
Jun 23, 2023
CVSS 7.6
EPSS 0.00
CVE-2023-35173 MEDIUM
Nextcloud End-to-end Encryption < 1.12.4 - Improper Access Control
Jun 23, 2023
CVSS 5.7
EPSS 0.00
CVE-2023-35172 HIGH
Nextcloud Server < 21.0.9.12 - Brute Force
Jun 23, 2023
CVSS 8.7
EPSS 0.00
CVE-2023-35171 MEDIUM
Nextcloud Server < 26.0.2 - Open Redirect
Jun 23, 2023
CVSS 4.1
EPSS 0.00
CVE-2023-32320 HIGH
Nextcloud Server < 21.0.9.12 - Brute Force
Jun 22, 2023
CVSS 8.7
EPSS 0.00
CVE-2023-33183 LOW
Nextcloud Calendar <4.2.3 - Info Disclosure
May 30, 2023
CVSS 2.6
EPSS 0.00
CVE-2023-33182 NONE
Nextcloud - Info Disclosure
May 30, 2023
EPSS 0.00
CVE-2023-33184 LOW
Nextcloud Mail - SSRF
May 27, 2023
CVSS 3.5
EPSS 0.00
Products
nextcloud_server 180 nextcloud 28 desktop 27 talk 20 deck 17 mail 15 calendar 9 richdocuments 8 user_oidc 7 contacts 7 nextcloud_enterprise_server 6 tables 5 group_folders 3 circles 3 notes 2 end-to-end_encryption 2 nextcloud_talk 2 guests 2 social 2 preferred_providers 2 server 2 openid_connect_user_backend 2 zipper 1 cookbook 1 dialogs 1 extract 1 files_access_control 1 global_site_selector 1 lookup-server 1 news 1
Quick Filters
Critical CVEs With Exploits In CISA KEV