LOW🇵🇱 Wersja polska

CVE-2022-29163

CVSS 3.5v3.1pub. 2022-05-20upd. 2024-11-21

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. Prior to versions 22.2.6 and 23.0.3, a user can create a link that is not password protected even if the administrator requires links to be password protected. Versions 22.2.6 and 23.0.3 contain a patch for this issue. There are currently no known workarounds.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N
  • Nextcloud Server

    APP
    Nextcloud
    < 22.2.623.0.0 – 23.0.3 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-26482CRITICAL9.0ten sam produkt

Nextcloud server is an open source home cloud implementation. In affected versions a missing scope validation ...

CVE-2021-32802CRITICAL9.3ten sam produkt

Nextcloud server is an open source, self hosted personal cloud. Nextcloud supports rendering image previews fo...

CVE-2021-22915CRITICAL9.8ten sam produkt

Nextcloud server before 19.0.11, 20.0.10, 21.0.2 is vulnerable to brute force attacks due to lack of inclusion...

CVE-2026-45281HIGH8.1ten sam produkt

Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 32.0.0 to before...

CVE-2024-37313HIGH7.3ten sam produkt

Nextcloud server is a self hosted personal cloud system. Under some circumstance it was possible to bypass the...