admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2021/22xxx/CVE-2021-22905.json
CVE Team 9a983ca84b
"-Synchronized-Data."
2021-06-11 16:01:13 +00:00

67 lines
2.2 KiB
JSON
Raw Blame History

{
"data_type": "CVE",
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"ID": "CVE-2021-22905",
"ASSIGNER": "support@hackerone.com",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "n/a",
"product": {
"product_data": [
{
"product_name": "Nextcloud Android App (com.nextcloud.client)",
"version": {
"version_data": [
{
"version_value": "Fixed in 3.16.0"
}
]
}
}
]
}
}
]
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Information Disclosure (CWE-200)"
}
]
}
]
},
"references": {
"reference_data": [
{
"refsource": "MISC",
"name": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-22v9-q3r6-x7cj",
"url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-22v9-q3r6-x7cj"
},
{
"refsource": "MISC",
"name": "https://hackerone.com/reports/1167916",
"url": "https://hackerone.com/reports/1167916"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "Nextcloud Android App (com.nextcloud.client) before v3.16.0 is vulnerable to information disclosure due to searches for sharees being performed by default on the lookup server instead of only using the local Nextcloud server unless a global search has been explicitly chosen by the user."
}
]
}
}
Reference in New Issue View Git Blame Copy Permalink