Nextcloud Server is a self hosted personal cloud system. Private shared calendar events' recurrence exceptions can be read by sharees. It is recommended that the Nextcloud Server is upgraded to 27.1.10 or 28.0.6 or 29.0.1 and that the Nextcloud Enterprise Server is upgraded to 27.1.10 or 28.0.6 or 29.0.1.
References
| Link | Resource |
|---|---|
| https://github.com/nextcloud/security-advisories/security/advisories/GHSA-h4xv-cjpm-j595 | Vendor Advisory |
| https://github.com/nextcloud/server/pull/45309 | Patch |
| https://hackerone.com/reports/2479325 | Issue Tracking |
Configurations
Configuration 1 (hide)
|
History
08 Aug 2024, 16:33
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | NVD-CWE-noinfo | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 3.5 |
| CPE | cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:-:*:*:* cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:* cpe:2.3:a:nextcloud:nextcloud_server:29.0.0:*:*:*:enterprise:*:*:* cpe:2.3:a:nextcloud:nextcloud_server:29.0.0:*:*:*:-:*:*:* |
|
| First Time |
Nextcloud
Nextcloud nextcloud Server |
|
| References | () https://hackerone.com/reports/2479325 - Issue Tracking | |
| References | () https://github.com/nextcloud/server/pull/45309 - Patch | |
| References | () https://github.com/nextcloud/security-advisories/security/advisories/GHSA-h4xv-cjpm-j595 - Vendor Advisory |
14 Jun 2024, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-06-14 16:15
Updated : 2024-08-08 16:33
NVD link : CVE-2024-37887
Mitre link : CVE-2024-37887
JSON object : View
Products Affected
nextcloud
- nextcloud_server
CWE