CVE-2021-39220
- EPSS 0.26%
- Veröffentlicht 25.10.2021 19:15:09
- Zuletzt bearbeitet 21.11.2024 06:18:56
Nextcloud is an open-source, self-hosted productivity platform The Nextcloud Mail application prior to versions 1.10.4 and 1.11.0 does by default not render images in emails to not leak the read state or user IP. The privacy filter failed to filter i...
CVE-2021-32707
- EPSS 0.64%
- Veröffentlicht 12.07.2021 19:15:10
- Zuletzt bearbeitet 21.11.2024 06:07:34
Nextcloud Mail is a mail app for Nextcloud. In versions prior to 1.9.6, the Nextcloud Mail application does not, by default, render images in emails to not leak the read state. The privacy filter failed to filter images with a `background-image` CSS ...
CVE-2021-32652
- EPSS 0.34%
- Veröffentlicht 01.06.2021 19:15:07
- Zuletzt bearbeitet 21.11.2024 06:07:27
Nextcloud Mail is a mail app for the Nextcloud platform. A missing permission check in Nextcloud Mail before 1.4.3 and 1.8.2 allows another authenticated users to access mail metadata of other users. Versions 1.4.3 and 1.8.2 contain patches for this ...
- EPSS 0.26%
- Veröffentlicht 12.05.2020 13:15:13
- Zuletzt bearbeitet 21.11.2024 05:38:24
A missing verification of the TLS host in Nextcloud Mail 1.1.3 allowed a man in the middle attack.