CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2021-32707 – Bypass of image blocking in Nextcloud Mail
https://notcve.org/view.php?id=CVE-2021-32707
Nextcloud Mail is a mail app for Nextcloud. In versions prior to 1.9.6, the Nextcloud Mail application does not, by default, render images in emails to not leak the read state. The privacy filter failed to filter images with a `background-image` CSS attribute. Note that the images were still passed through the Nextcloud image proxy, and thus there was no IP leakage. The issue was patched in version 1.9.6 and 1.10.0. • https://github.com/nextcloud/mail/pull/5189 https://github.com/nextcloud/security-advisories/security/advisories/GHSA-xxp4-44xc-8crh https://hackerone.com/reports/1215251 • CWE-20: Improper Input Validation CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-32705 – Lack of ratelimit on public DAV endpoint
https://notcve.org/view.php?id=CVE-2021-32705
Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.13, 20.011, and 21.0.3, there was a lack of ratelimiting on the public DAV endpoint. This may have allowed an attacker to enumerate potentially valid share tokens or credentials. The issue was fixed in versions 19.0.13, 20.0.11, and 21.0.3. There are no known workarounds. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-fjv7-283f-5m54 https://github.com/nextcloud/server/pull/27610 https://hackerone.com/reports/1192159 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BVZS26RDME2DYTKET5AECRIZDFUGR2AZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J63NBVPR2AQCAWRNDOZSGRY5II4WS2CZ https://security.gentoo.org/glsa/202208-17 • CWE-307: Improper Restriction of Excessive Authentication Attempts CWE-799: Improper Control of Interaction Frequency •
CVSS: 5.3EPSS: 0%CPEs: 5EXPL: 0CVE-2021-32703 – Lack of ratelimit on shareinfo endpoint
https://notcve.org/view.php?id=CVE-2021-32703
Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.13, 20.011, and 21.0.3, there was a lack of ratelimiting on the shareinfo endpoint. This may have allowed an attacker to enumerate potentially valid share tokens. The issue was fixed in versions 19.0.13, 20.0.11, and 21.0.3. There are no known workarounds. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-375p-cxxq-gc9p https://github.com/nextcloud/server/pull/26945 https://hackerone.com/reports/1173684 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BVZS26RDME2DYTKET5AECRIZDFUGR2AZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J63NBVPR2AQCAWRNDOZSGRY5II4WS2CZ https://security.gentoo.org/glsa/202208-17 • CWE-307: Improper Restriction of Excessive Authentication Attempts CWE-799: Improper Control of Interaction Frequency •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-32688 – Application specific tokens can change their own scope
https://notcve.org/view.php?id=CVE-2021-32688
Nextcloud Server is a Nextcloud package that handles data storage. Nextcloud Server supports application specific tokens for authentication purposes. These tokens are supposed to be granted to a specific applications (e.g. DAV sync clients), and can also be configured by the user to not have any filesystem access. Due to a lacking permission check, the tokens were able to change their own permissions in versions prior to 19.0.13, 20.0.11, and 21.0.3. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-48m7-7r2r-838r https://github.com/nextcloud/server/pull/27000 https://hackerone.com/reports/1193321 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BVZS26RDME2DYTKET5AECRIZDFUGR2AZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J63NBVPR2AQCAWRNDOZSGRY5II4WS2CZ https://security.gentoo.org/glsa/202208-17 • CWE-285: Improper Authorization CWE-552: Files or Directories Accessible to External Parties •
CVSS: 3.3EPSS: 0%CPEs: 5EXPL: 0CVE-2021-32680 – Audit log is not properly logging unsetting of share expiration date
https://notcve.org/view.php?id=CVE-2021-32680
Nextcloud Server is a Nextcloud package that handles data storage. In versions priot to 19.0.13, 20.0.11, and 21.0.3, Nextcloud Server audit logging functionality wasn't properly logging events for the unsetting of a share expiration date. This event is supposed to be logged. This issue is patched in versions 19.0.13, 20.0.11, and 21.0.3. Nextcloud Server es un paquete de Nextcloud que maneja el almacenamiento de datos. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-fxpq-wq7c-vppf https://github.com/nextcloud/server/pull/27024 https://hackerone.com/reports/1200810 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BVZS26RDME2DYTKET5AECRIZDFUGR2AZ https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J63NBVPR2AQCAWRNDOZSGRY5II4WS2CZ https://security.gentoo.org/glsa/202208-17 • CWE-778: Insufficient Logging •