Unrated severityNVD Advisory· Published Jan 26, 2021· Updated Aug 4, 2024

CVE-2020-8293

Description

A missing input validation in Nextcloud Server before 20.0.2, 19.0.5, 18.0.11 allows users to store unlimited data in workflow rules causing load and potential DDoS on later interactions and usage with those rules.

Affected products

N/a/Nextcloud Serverv5
Range: Fixed in 20.0.2, 19.0.5, 18.0.11

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

hackerone.com/reports/1018146mitrex_refsource_MISC
nextcloud.com/security/advisory/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000