Medium severity6.5NVD Advisory· Published Sep 7, 2021· Updated Jun 17, 2026
CVE-2021-37630
CVE-2021-37630
Description
Nextcloud Circles is an open source social network built for the nextcloud ecosystem. In affected versions the Nextcloud Circles application allowed any user to join any "Secret Circle" without approval by the Circle owner leaking private information. It is recommended that Nextcloud Circles is upgraded to 0.19.15, 0.20.11 or 0.21.4. There are no workarounds for this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- nextcloud/security-advisoriesv5Range: < 0.19.15
Patches
Vulnerability mechanics
References
3- github.com/nextcloud/circles/pull/768nvdPatchThird Party Advisory
- github.com/nextcloud/security-advisories/security/advisories/GHSA-56j9-3rj4-wvgmnvdThird Party Advisory
- hackerone.com/reports/1257624nvdPermissions RequiredThird Party Advisory
News mentions
0No linked articles in our index yet.