CVE-2024-52515

CWE-706Use of Incorrectly-Resolved Name2 documents2 sources
Severity
6.5MEDIUM
EPSS
1.5%
top 18.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nextcloud Nextcloud ServerNextcloud Security-advisories
Timeline
PublishedNov 15

Description

Nextcloud Server is a self hosted personal cloud system. After an admin enables the default-disabled SVG preview provider, a malicious user could upload a manipulated SVG file referencing paths. If the file would exist the preview of the SVG would preview the other file instead. It is recommended that the Nextcloud Server is upgraded to 27.1.10, 28.0.6 or 29.0.1 and Nextcloud Enterprise Server is upgraded to 24.0.12.15, 25.0.13.10, 26.0.13.4, 27.1.10, 28.0.6 or 29.0.1.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:NExploitability: 2.1 | Impact: 3.6

Affected Packages2 packages

NVDnextcloud/nextcloud_server24.0.024.0.12.15+5
CVEListV5nextcloud/security-advisories>= 27.0.0, < 27.1.10, >= 28.0.0, < 28.0.6, >= 29.0.0, < 29.0.1+2

Patches

Patch: github.com

🔴Vulnerability Details

1
CVEList
Nextcloud Server has incomplete sanitization of SVG files allows to embed other images into previews2024-11-15
CVE-2024-52515 (MEDIUM CVSS 6.5) | Nextcloud Server is a self hosted p | cvebase.io