CVE-2016-9464

Severity Score

4.3

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Nextcloud Server before 9.0.54 and 10.0.0 suffers from an improper authorization check on removing shares. The Sharing Backend as implemented in Nextcloud does differentiate between shares to users and groups. In case of a received group share, users should be able to unshare the file to themselves but not to the whole group. The previous API implementation simply unshared the file to all users in the group.

Nextcloud Server en versiones anteriores a 9.0.54 y 10.0.0 sufre de una verificación de autorización incorrecta de los recursos eliminados. El Sharing Backend tal como se implemento en Nextcloud diferencia los compartidos entre usuarios y grupos. En caso de una couta de grupo recibida, los usuarios deben ser capaces de no compartir los archivos con ellos mismos pero no a todo el grupo. La implementación anterior de la API simplemente no compartió el archivo a todos los uusarios en el grupo.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

None

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2016-11-19 CVE Reserved
2017-03-28 CVE Published
2023-03-08 EPSS Updated
2024-08-06 CVE Updated
2024-08-06 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-285: Improper Authorization

CAPEC

References (7)

URL	Tag	Source
http://www.securityfocus.com/bid/97287	Third Party Advisory

URL	Date	SRC
https://hackerone.com/reports/153905	2024-08-06

URL	Date	SRC
https://github.com/nextcloud/server/commit/3387e5d00fcf6b2ea6b285a091e5743f545e7202	2019-10-09
https://github.com/nextcloud/server/commit/7289cb5ec0b812992ab0dfb889744b94bc0994f0	2019-10-09
https://github.com/nextcloud/server/commit/a5471b4a3e3f30e99e4de39c97c0c3b3c2f1618f	2019-10-09
https://github.com/nextcloud/server/commit/e2c4f4f9aa11bc92e8f2212cce73841b922187e8	2019-10-09
https://nextcloud.com/security/advisory/?id=nc-sa-2016-007	2019-10-09

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Nextcloud Search vendor "Nextcloud"		Nextcloud Server Search vendor "Nextcloud" for product "Nextcloud Server"				< 9.0.54 Search vendor "Nextcloud" for product "Nextcloud Server" and version " < 9.0.54"		-		Affected
Nextcloud Search vendor "Nextcloud"		Nextcloud Server Search vendor "Nextcloud" for product "Nextcloud Server"				10.0 Search vendor "Nextcloud" for product "Nextcloud Server" and version "10.0"		rc1		Affected