2023-04-24 12:24:31 +02:00
{
"id" : "CVE-2023-25579" ,
"sourceIdentifier" : "security-advisories@github.com" ,
"published" : "2023-02-22T19:15:11.697" ,
2024-12-08 03:06:42 +00:00
"lastModified" : "2024-11-21T07:49:45.970" ,
"vulnStatus" : "Modified" ,
2024-07-14 02:06:08 +00:00
"cveTags" : [ ] ,
2023-04-24 12:24:31 +02:00
"descriptions" : [
{
"lang" : "en" ,
"value" : "Nextcloud server is a self hosted home cloud product. In affected versions the `OC\\Files\\Node\\Folder::getFullPath()` function was validating and normalizing the string in the wrong order. The function is used in the `newFile()` and `newFolder()` items, which may allow to creation of paths outside of ones own space and overwriting data from other users with crafted paths. This issue has been addressed in versions 25.0.2, 24.0.8, and 23.0.12. Users are advised to upgrade. There are no known workarounds for this issue."
}
] ,
"metrics" : {
"cvssMetricV31" : [
{
"source" : "security-advisories@github.com" ,
"type" : "Secondary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L" ,
2024-12-08 03:06:42 +00:00
"baseScore" : 6.0 ,
"baseSeverity" : "MEDIUM" ,
2023-04-24 12:24:31 +02:00
"attackVector" : "NETWORK" ,
"attackComplexity" : "HIGH" ,
"privilegesRequired" : "LOW" ,
"userInteraction" : "NONE" ,
"scope" : "CHANGED" ,
"confidentialityImpact" : "LOW" ,
"integrityImpact" : "LOW" ,
2024-12-08 03:06:42 +00:00
"availabilityImpact" : "LOW"
2023-04-24 12:24:31 +02:00
} ,
"exploitabilityScore" : 1.8 ,
"impactScore" : 3.7
2024-12-08 03:06:42 +00:00
} ,
{
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
"cvssData" : {
"version" : "3.1" ,
"vectorString" : "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N" ,
"baseScore" : 7.5 ,
"baseSeverity" : "HIGH" ,
"attackVector" : "NETWORK" ,
"attackComplexity" : "LOW" ,
"privilegesRequired" : "NONE" ,
"userInteraction" : "NONE" ,
"scope" : "UNCHANGED" ,
"confidentialityImpact" : "NONE" ,
"integrityImpact" : "HIGH" ,
"availabilityImpact" : "NONE"
} ,
"exploitabilityScore" : 3.9 ,
"impactScore" : 3.6
2023-04-24 12:24:31 +02:00
}
]
} ,
"weaknesses" : [
{
2024-12-08 03:06:42 +00:00
"source" : "security-advisories@github.com" ,
"type" : "Secondary" ,
2023-04-24 12:24:31 +02:00
"description" : [
{
"lang" : "en" ,
"value" : "CWE-22"
}
]
} ,
{
2024-12-08 03:06:42 +00:00
"source" : "nvd@nist.gov" ,
"type" : "Primary" ,
2023-04-24 12:24:31 +02:00
"description" : [
{
"lang" : "en" ,
"value" : "CWE-22"
}
]
}
] ,
"configurations" : [
{
"nodes" : [
{
"operator" : "OR" ,
"negate" : false ,
"cpeMatch" : [
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:*:*:*:*" ,
"versionEndExcluding" : "23.0.12" ,
"matchCriteriaId" : "B50151BE-566E-4F7F-BFF5-CDBA5A0AE4B8"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*" ,
"versionStartIncluding" : "20.0.0" ,
"versionEndExcluding" : "20.0.14" ,
"matchCriteriaId" : "00D6E726-5ED1-4409-8063-903F9DF581C6"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*" ,
"versionStartIncluding" : "21.0.0" ,
"versionEndExcluding" : "21.0.9" ,
"matchCriteriaId" : "3A67058C-45D1-48DD-9247-1F465D0FBC19"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*" ,
"versionStartIncluding" : "22.2.0" ,
"versionEndExcluding" : "22.2.10" ,
"matchCriteriaId" : "F019288C-0D86-4F4B-B6FE-7D6A5BE4125C"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*" ,
"versionStartIncluding" : "23.0.0" ,
"versionEndExcluding" : "23.0.12" ,
"matchCriteriaId" : "61D5D9C2-C03D-4F66-89B5-D5F94EFBCDAB"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "24.0.0" ,
"versionEndExcluding" : "24.0.8" ,
"matchCriteriaId" : "7827F3FA-9D17-4915-90CB-B3652E310F0E"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*" ,
"versionStartIncluding" : "24.0.0" ,
"versionEndExcluding" : "24.0.8" ,
"matchCriteriaId" : "FF5F1D96-7883-40CD-82A4-13AAF12F53D2"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:*:*:*:*" ,
"versionStartIncluding" : "25.0.0" ,
"versionEndExcluding" : "25.0.2" ,
"matchCriteriaId" : "8D5A8D9E-E394-4841-8177-BBC971CAF023"
} ,
{
"vulnerable" : true ,
"criteria" : "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*" ,
"versionStartIncluding" : "25.0.0" ,
"versionEndExcluding" : "25.0.2" ,
"matchCriteriaId" : "A263A4CF-DF40-41F3-BB9A-D03FF96FF6F6"
}
]
}
]
}
] ,
"references" : [
{
"url" : "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-273v-9h7x-p68v" ,
"source" : "security-advisories@github.com" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "https://github.com/nextcloud/server/pull/35074" ,
"source" : "security-advisories@github.com" ,
"tags" : [
"Patch"
]
2024-12-08 03:06:42 +00:00
} ,
{
"url" : "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-273v-9h7x-p68v" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Vendor Advisory"
]
} ,
{
"url" : "https://github.com/nextcloud/server/pull/35074" ,
"source" : "af854a3a-2127-422b-91ae-364da2661108" ,
"tags" : [
"Patch"
]
2023-04-24 12:24:31 +02:00
}
]
}
