Unrated severityNVD Advisory· Published Oct 30, 2020· Updated Aug 4, 2024
CVE-2020-8183
CVE-2020-8183
Description
A logic error in Nextcloud Server 19.0.0 caused a plaintext storage of the share password when it was given on the initial create API call.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- Range: =19.0.0
- osv-coords5 versionspkg:rpm/opensuse/nextcloud&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/nextcloud&distro=openSUSE%20Leap%2015.2pkg:rpm/suse/nextcloud&distro=SUSE%20Package%20Hub%2012pkg:rpm/suse/nextcloud&distro=SUSE%20Package%20Hub%2015%20SP1pkg:rpm/suse/nextcloud&distro=SUSE%20Package%20Hub%2015%20SP2
< 20.0.0-bp152.2.3.1+ 4 more
- (no CPE)range: < 20.0.0-bp152.2.3.1
- (no CPE)range: < 20.0.0-bp152.2.3.1
- (no CPE)range: < 20.0.0-bp152.2.3.1
- (no CPE)range: < 20.0.0-bp152.2.3.1
- (no CPE)range: < 20.0.0-bp152.2.3.1
Patches
Vulnerability mechanics
References
2- hackerone.com/reports/885041mitrex_refsource_MISC
- nextcloud.com/security/advisory/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.