Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5
CVE-2021-41178
- EPSS 0.56%
- Veröffentlicht 25.10.2021 22:15:07
- Zuletzt bearbeitet 21.11.2024 06:25:41
Nextcloud is an open-source, self-hosted productivity platform. Prior to versions 20.0.13, 21.0.5, and 22.2.0, a file traversal vulnerability makes an attacker able to download arbitrary SVG images from the host system, including user provided files....
- EPSS 0.38%
- Veröffentlicht 25.10.2021 22:15:07
- Zuletzt bearbeitet 21.11.2024 06:25:41
Nextcloud is an open-source, self-hosted productivity platform. Prior to Nextcloud Server versions 20.0.13, 21.0.5, and 22.2.0, the Two-Factor Authentication wasn't enforced for pages marked as public. Any page marked as `@PublicPage` could thus be a...