Nextcloud Server 28.0.0

CPE Details

Nextcloud Server 28.0.0
nextcloud
nextcloud_server
28.0.0
2024-02-03
00h48 +00:00
2024-02-03
00h48 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:nextcloud:nextcloud_server:28.0.0:*:*:*:*:*:*:*

Informations

Vendor

nextcloud

Product

nextcloud_server

Version

28.0.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-52516 2024-11-15 16h55 +00:00 Nextcloud Server is a self hosted personal cloud system. When a server is configured to only allow sharing with users that are in ones own groups, after a user was removed from a group, previously shared items were not unshared. It is recommended that the Nextcloud Server is upgraded to 22.2.11 or 23.0.11 or 24.0.6 and Nextcloud Enterprise Server is upgraded to 22.2.11 or 23.0.11 or 24.0.6.
4.3
Medium
CVE-2024-52517 2024-11-15 16h49 +00:00 Nextcloud Server is a self hosted personal cloud system. After storing "Global credentials" on the server, the API returns them and adds them into the frontend again, allowing to read them in plain text when an attacker already has access to an active session of a user. It is recommended that the Nextcloud Server is upgraded to 28.0.11, 29.0.8 or 30.0.1 and Nextcloud Enterprise Server is upgraded to 25.0.13.13, 26.0.13.9, 27.1.11.9, 28.0.11, 29.0.8 or 30.0.1.
5.9
Medium