CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-28844 – User without download rights can download older version of that file in nextcloud server
https://notcve.org/view.php?id=CVE-2023-28844
Nextcloud server is an open source home cloud implementation. In affected versions users that should not be able to download a file can still download an older version and use that for uncontrolled distribution. This issue has been addressed in versions 24.0.10 and 25.0.4. Users are advised to upgrade. There are no known workarounds for this vulnerability. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-w47p-f66h-h2vj https://github.com/nextcloud/server/pull/36113 • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-28835 – Insecure randomness for default password in nextcloud
https://notcve.org/view.php?id=CVE-2023-28835
Nextcloud server is an open source home cloud implementation. In affected versions the generated fallback password when creating a share was using a weak complexity random number generator, so when the sharer did not change it the password could be guessable to an attacker willing to brute force it. It is recommended that the Nextcloud Server is upgraded to 24.0.10 or 25.0.4. This issue only affects users who do not have a password policy enabled, so enabling a password policy is an effective mitigation for users unable to upgrade. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-7w2p-rp9m-9xp9 https://github.com/nextcloud/server/pull/36093 • CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-28833 – Unrestricted filenames for logo or favicon as admin in the theming settings in nextcloud server
https://notcve.org/view.php?id=CVE-2023-28833
Nextcloud server is an open source home cloud implementation. In affected versions admins of a server were able to upload a logo or a favicon and to provided a file name which was not restricted and could overwrite files in the appdata directory. Administrators may have access to overwrite these files by other means but this method could be exploited by tricking an admin into uploading a maliciously named file. It is recommended that the Nextcloud Server is upgraded to 24.0.10 or 25.0.4. Users unable to upgrade should avoid ingesting logo files from untrusted sources. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-ch7f-px7m-hg25 https://github.com/nextcloud/server/pull/36095 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28644 – Reference fetch can saturate the server bandwidth for 10 seconds in nextcloud server
https://notcve.org/view.php?id=CVE-2023-28644
Nextcloud server is an open source home cloud implementation. In releases of the 25.0.x branch before 25.0.3 an inefficient fetch operation may impact server performances and/or can lead to a denial of service. This issue has been addressed and it is recommended that the Nextcloud Server is upgraded to 25.0.3. There are no known workarounds for this vulnerability. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-9wmj-gp8v-477j https://github.com/nextcloud/server/pull/36016 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 1CVE-2023-28643 – Potential share collision for recipients when caching is enabled in nextcloud server
https://notcve.org/view.php?id=CVE-2023-28643
Nextcloud server is an open source home cloud implementation. In affected versions when a recipient receives 2 shares with the same name, while a memory cache is configured, the second share will replace the first one instead of being renamed to `{name} (2)`. It is recommended that the Nextcloud Server is upgraded to 25.0.3 or 24.0.9. Users unable to upgrade should avoid sharing 2 folders with the same name to the same user. • https://github.com/nextcloud/security-advisories/security/advisories/GHSA-hhq4-4pr8-wm27 https://github.com/nextcloud/server/issues/34015 https://github.com/nextcloud/server/pull/36047 • CWE-706: Use of Incorrectly-Resolved Name or Reference •