Lucene search
China National Vulnerability DatabaseCNVD-2021-102886HistorySep 09, 2021 - 12:00 a.m.
Nextcloud server authorization issue vulnerability (CNVD-2021-102886)
2021-09-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
0.003 Low
EPSS
Percentile
68.3%
Nextcloud server is an open source self-hosted file synchronization and sharing communication application platform from Nextcloud Germany. nextcloud server is vulnerable to authorization issues in versions prior to 20.0.12, 21.0.4 or 22.1.0. The vulnerability stems from a lack of authentication measures or insufficient authentication strength in the network system or product. insufficient strength. An attacker could exploit this vulnerability to bypass two-factor authentication in Nextcloud.
| CPE | Name | Operator | Version |
|---|---|---|---|
| nextcloud nextcloud | lt | 20.0.12 | |
| nextcloud nextcloud | lt | 21.0.4 | |
| nextcloud nextcloud | lt | 22.1.0 |
Related
prion
prion
Design/Logic Flaw
2021-09-07 22:15:00
nvd
nvd
CVE-2021-32800
2021-09-07 22:15:08
cvelist
cvelist
CVE-2021-32800 Bypass of Two Factor Authentication in Nextcloud server
2021-09-07 21:35:11
nextcloud
nextcloud
Bypass of Two Factor Authentication
2021-09-06 08:38:35
osv
osv
CVE-2021-32800
2021-09-07 22:15:08
cve
cve
CVE-2021-32800
2021-09-07 22:15:08
suse
suse
Security update for nextcloud (important)
2021-09-13 00:00:00
Security update for nextcloud (important)
2021-09-16 00:00:00
Security update for nextcloud (important)
2021-09-14 00:00:00
openvas
openvas
Nextcloud Server Multiple Vulnerabilities (Sep 2021)
2021-09-09 00:00:00
openSUSE: Security Advisory for nextcloud (openSUSE-SU-2021:1253-1)
2021-09-15 00:00:00
nessus
nessus
openSUSE 15 Security Update : nextcloud (openSUSE-SU-2021:1253-1)
2021-09-15 00:00:00
openSUSE 15 Security Update : nextcloud (openSUSE-SU-2021:1255-1)
2021-09-15 00:00:00
GLSA-202208-17 : Nextcloud: Multiple Vulnerabilities
2022-08-16 00:00:00
gentoo
gentoo
Nextcloud: Multiple Vulnerabilities
2022-08-10 00:00:00