CVE-2020-8295

CVE-2020-8295

EPSS 1.8%CWE-400

A wrong check in Nextcloud Server 19 and prior allowed to perform a denial of service attack when resetting the password for a user.

Affected products

n/a · Nextcloud Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://hackerone.com/reports/812754 https://nextcloud.com/security/advisory/?id=NC-SA-2021-003