Hackerone Nextcloud Server vulnerabilities
2 known vulnerabilities affecting hackerone/nextcloud_server.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2018-3775HIGHCVSS 8.8v<12.0.32018-08-12
CVE-2018-3775 [HIGH] CWE-287 CVE-2018-3775: Improper Authentication in Nextcloud Server prior to version 12.0.3 would allow an attacker that obt
Improper Authentication in Nextcloud Server prior to version 12.0.3 would allow an attacker that obtained user credentials to bypass the 2 Factor Authentication.
cvelistv5nvd
CVE-2018-3776MEDIUMCVSS 5.3v<12.0.3 <11.0.52018-08-12
CVE-2018-3776 [MEDIUM] CWE-20 CVE-2018-3776: Improper input validator in Nextcloud Server prior to 12.0.3 and 11.0.5 could lead to an attacker's
Improper input validator in Nextcloud Server prior to 12.0.3 and 11.0.5 could lead to an attacker's actions not being logged in the audit log.
cvelistv5nvd