CVE-2024-52516

Published Nov 15, 2024

Last updated 2 days ago

CVSS low 3.0

Overview

Description
Nextcloud Server is a self hosted personal cloud system. When a server is configured to only allow sharing with users that are in ones own groups, after a user was removed from a group, previously shared items were not unshared. It is recommended that the Nextcloud Server is upgraded to 22.2.11 or 23.0.11 or 24.0.6 and Nextcloud Enterprise Server is upgraded to 22.2.11 or 23.0.11 or 24.0.6.
Source
security-advisories@github.com
NVD status
Received

Risk scores

CVSS 3.1

Type
Secondary
Base score
3
Impact score
1.4
Exploitability score
1.3
Vector string
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:N/A:N
Severity
LOW

Weaknesses

security-advisories@github.com
CWE-269

Social media

Hype score
Not currently trending

  1. CVE-2024-52516 Nextcloud Server is a self hosted personal cloud system. When a server is configured to only allow sharing with users that are in ones own groups, after a user was re… https://t.co/JFAz6iKxDX

    @CVEnew

    15 Nov 2024

    199 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

References