VYPR
Unrated severityNVD Advisory· Published May 20, 2022· Updated Apr 23, 2025

Bypass of password requirements when sharing a folder via the Circles app in Nextcloud Server

CVE-2022-29163

Description

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. Prior to versions 22.2.6 and 23.0.3, a user can create a link that is not password protected even if the administrator requires links to be password protected. Versions 22.2.6 and 23.0.3 contain a patch for this issue. There are currently no known workarounds.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Nextcloud/Serverllm-fuzzy
    Range: <22.2.6 || <23.0.3
  • nextcloud/security-advisoriesv5
    Range: < 22.2.6

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.