Lucene search
Mohamed DiefNC-SA-2021-001HistoryNov 18, 2020 - 12:00 a.m.
Potential DDoS when posting long data into workflow validation rules (NC-SA-2021-001)
2020-11-1800:00:00
Mohamed Dief
nextcloud.com
12
0.001 Low
EPSS
Percentile
35.0%
A missing input validation in Nextcloud Server 20.0.1 allowed users to store unlimited data in workflow rules causing load and potential DDoS on later interactions and usage with those rules.
| CPE | Name | Operator | Version |
|---|---|---|---|
| nextcloud server | lt | 20.0.2 | |
| nextcloud server | lt | 19.0.5 | |
| nextcloud server | lt | 18.0.11 |
Related
nvd
nvd
CVE-2020-8293
2021-01-26 18:16:08
prion
prion
Input validation
2021-01-26 18:16:00
cve
cve
CVE-2020-8293
2021-01-26 18:16:08
osv
osv
CVE-2020-8293
2021-01-26 18:16:08
cvelist
cvelist
CVE-2020-8293
2021-01-26 16:33:25
hackerone
hackerone
openvas
openvas
Nextcloud Server Multiple Vulnerabilities (NC-SA-2021-001, NC-SA-2021-002)
2021-01-28 00:00:00
openSUSE: Security Advisory for nextcloud (openSUSE-SU-2021:0262-1)
2021-04-16 00:00:00
openSUSE: Security Advisory for nextcloud (openSUSE-SU-2021:1068-1)
2021-07-21 00:00:00
nessus
nessus
openSUSE Security Update : nextcloud (openSUSE-2021-262)
2021-02-09 00:00:00
openSUSE 15 Security Update : nextcloud (openSUSE-SU-2021:1068-1)
2021-07-21 00:00:00
suse
suse
Security update for nextcloud (moderate)
2021-02-11 00:00:00
Security update for nextcloud (moderate)
2021-02-08 00:00:00
Security update for nextcloud (important)
2021-07-21 00:00:00