Nextcloud Officeonline vulnerabilities

1 known vulnerability affecting nextcloud/officeonline.

Total CVEs
1
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2021-39224MEDIUMCVSS 5.3fixed in 1.1.12021-10-25
CVE-2021-39224 [MEDIUM] CWE-200 CVE-2021-39224: Nextcloud is an open-source, self-hosted productivity platform. The Nextcloud OfficeOnline applicati Nextcloud is an open-source, self-hosted productivity platform. The Nextcloud OfficeOnline application prior to version 1.1.1 returned verbatim exception messages to the user. This could result in a full path disclosure on shared files. (e.g. an attacker could see that the file `shared.txt` is located within `/files/$username/Myfolder/Mysubfolder/sh
nvd