CVE-2021-41178Relative Path Traversal in Security-advisories

CWE-23Relative Path TraversalCWE-434Unrestricted File UploadCWE-22Path Traversal2 documents2 sources
Severity
6.5MEDIUMNVD
CNA8.8
EPSS
0.9%
top 24.82%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nextcloud Security-advisoriesNextcloud Server
Timeline
PublishedOct 25

Description

Nextcloud is an open-source, self-hosted productivity platform. Prior to versions 20.0.13, 21.0.5, and 22.2.0, a file traversal vulnerability makes an attacker able to download arbitrary SVG images from the host system, including user provided files. This could also be leveraged into a XSS/phishing attack, an attacker could upload a malicious SVG file that mimics the Nextcloud login form and send a specially crafted link to victims. The XSS risk here is mitigated due to the fact that Nextcloud e

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

NVDnextcloud/server20.0.320.0.13+2
CVEListV5nextcloud/security-advisories< 22.2.0+2

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

1
CVEList
File Traversal affecting SVG files on Nextcloud Server2021-10-25
CVE-2021-41178 — Relative Path Traversal | cvebase