Unrated severityNVD Advisory· Published Feb 4, 2020· Updated Aug 5, 2024
CVE-2019-15623
CVE-2019-15623
Description
Exposure of Private Information in Nextcloud Server 16.0.1 causes the server to send it's domain and user IDs to the Nextcloud Lookup Server without any further data when the Lookup server is disabled.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6- osv-coords4 versionspkg:rpm/opensuse/nextcloud&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/nextcloud&distro=SUSE%20Package%20Hub%2012pkg:rpm/suse/nextcloud&distro=SUSE%20Package%20Hub%2015pkg:rpm/suse/nextcloud&distro=SUSE%20Package%20Hub%2015%20SP1
< 15.0.14-bp151.3.3.1+ 3 more
- (no CPE)range: < 15.0.14-bp151.3.3.1
- (no CPE)range: < 15.0.14-bp151.3.3.1
- (no CPE)range: < 15.0.14-bp151.3.3.1
- (no CPE)range: < 15.0.14-bp151.3.3.1
Patches
Vulnerability mechanics
References
4- lists.opensuse.org/opensuse-security-announce/2020-02/msg00019.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2020-02/msg00022.htmlmitrevendor-advisoryx_refsource_SUSE
- hackerone.com/reports/508490mitrex_refsource_MISC
- nextcloud.com/security/advisory/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.