Lucene search
Veracode Vulnerability DatabaseVERACODE:38333HistoryDec 05, 2022 - 5:27 a.m.
Improper Certificate Validation
2022-12-0505:27:06
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
22
vulnerability
certificate validation
man-in-the-middle
tls
attack
control
client
server
EPSS
0.001
Percentile
20.4%
nextcloud-desktop is vulnerable to improper certificate validation. The vulnerability exists due to man in the middle attacks in invalid TLS certificates which allows an attacker to take control of a machine between the client and the server.
Related
nextcloud
nextcloud
nextcloudcmd incorrectly trusts bad TLS certificates
2022-11-25 11:32:05
hackerone
hackerone
Nextcloud: nextcloudcmd incorrectly trusts bad TLS certificates
2022-09-14 07:53:20
cvelist
cvelist
CVE-2022-39334 nextcloudcmd incorrectly trusts bad TLS certificates
2022-11-25 00:00:00
osv
osv
CVE-2022-39334
2022-11-25 19:15:11
debiancve
debiancve
CVE-2022-39334
2022-11-25 19:15:11
cve
cve
CVE-2022-39334
2022-11-25 19:15:11
ubuntucve
ubuntucve
CVE-2022-39334
2022-11-25 00:00:00
prion
prion
Code injection
2022-11-25 19:15:00
nvd
nvd
CVE-2022-39334
2022-11-25 19:15:11
nessus
nessus
openSUSE 15 Security Update : nextcloud-desktop (openSUSE-SU-2023:0171-1)
2023-07-11 00:00:00
openSUSE 15 Security Update : nextcloud-desktop (openSUSE-SU-2023:0090-1)
2023-04-13 00:00:00
openvas
openvas
openSUSE: Security Advisory for nextcloud (openSUSE-SU-2023:0171-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for nextcloud (openSUSE-SU-2023:0090-1)
2024-03-04 00:00:00