← voltar
CVE-2019-15623

CVE-2019-15623

EPSS 1.9%CWE-359
Exposure of Private Information in Nextcloud Server 16.0.1 causes the server to send it's domain and user IDs to the Nextcloud Lookup Server without any further data when the Lookup server is disabled.
Produtos afetados
n/a · Nextcloud Server

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00019.htmlhttp://lists.opensuse.org/opensuse-security-announce/2020-02/msg00022.htmlhttps://hackerone.com/reports/508490https://nextcloud.com/security/advisory/?id=NC-SA-2019-016