Description
Nextcloud is an open-source productivity platform. In Nextcloud Desktop client 3.0.0 until 3.8.0, Nextcloud Android app 3.13.0 until 3.25.0, and Nextcloud iOS app 3.0.5 until 4.8.0, a malicious server administrator can gain full access to an end-to-end encrypted folder. They can decrypt files, recover the folder structure and add new files. This issue is fixed in Nextcloud Desktop 3.8.0, Nextcloud Android 3.25.0, and Nextcloud iOS 4.8.0. No known workarounds are available.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-8875-wxww-3rr8
Patch, Vendor Advisory x_refsource_misc
https://github.com/nextcloud/desktop/pull/5560
Exploit, Technical Description, Third Party Advisory x_refsource_misc
https://ethz.ch/content/dam/ethz/special-interest/infk/inst-infsec/appliedcrypto/education/theses/report_DanieleCoppola.pdf
Scores
CVSS v3
6.9
EPSS
0.0068
EPSS Percentile
47.3%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-325
CWE-311
Status
published
Products (3)
nextcloud/desktop
3.0.0 - 3.8.0
nextcloud/nextcloud
3.0.5 - 4.8.0
nextcloud/nextcloud
3.13.0 - 3.25.0
Published
Apr 04, 2023
Tracked Since
Feb 18, 2026