Medium severity6.5NVD Advisory· Published Jun 11, 2021· Updated Jun 17, 2026
CVE-2021-22905
CVE-2021-22905
Description
Nextcloud Android App (com.nextcloud.client) before v3.16.0 is vulnerable to information disclosure due to searches for sharees being performed by default on the lookup server instead of only using the local Nextcloud server unless a global search has been explicitly chosen by the user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- Nextcloud/Android Appdescription
- Range: <3.16.0
- Range: <3.16.0
Patches
Vulnerability mechanics
References
2- hackerone.com/reports/1167916nvdExploitIssue TrackingThird Party Advisory
- github.com/nextcloud/security-advisories/security/advisories/GHSA-22v9-q3r6-x7cjnvdThird Party Advisory
News mentions
0No linked articles in our index yet.