Nextcloud: Lack of authenticity of metadata keys allows a malicious server to gain access to E2EE folders
Description
Nextcloud is an open-source productivity platform. In Nextcloud Desktop client 3.0.0 until 3.8.0, Nextcloud Android app 3.13.0 until 3.25.0, and Nextcloud iOS app 3.0.5 until 4.8.0, a malicious server administrator can gain full access to an end-to-end encrypted folder. They can decrypt files, recover the folder structure and add new files. This issue is fixed in Nextcloud Desktop 3.8.0, Nextcloud Android 3.25.0, and Nextcloud iOS 4.8.0. No known workarounds are available.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A malicious Nextcloud server administrator can decrypt end-to-end encrypted folders in Desktop, Android, and iOS clients before patched versions.
Vulnerability
The vulnerability lies in the handling of end-to-end encryption (E2EE) metadata in Nextcloud clients. A malicious server administrator can supply crafted metadata that causes the client to fall back to an older, vulnerable metadata format, bypassing the authenticity checks. This affects Nextcloud Desktop client versions 3.0.0 to 3.8.0, Nextcloud Android app versions 3.13.0 to 3.25.0, and Nextcloud iOS app versions 3.0.5 to 4.8.0 [2].
Exploitation
An attacker with server administrator privileges can manipulate the metadata keys sent to the client during synchronization. The client, trusting the server, falls back to an older metadata format that the attacker can decrypt. No user interaction is required beyond the client syncing with the server [1][2].
Impact
Successful exploitation allows the attacker to decrypt all files in the E2EE folder, recover the folder structure, and add new encrypted files. This fully compromises the confidentiality and integrity of the end-to-end encrypted data [2].
Mitigation
The issue is fixed in Nextcloud Desktop 3.8.0, Nextcloud Android 3.25.0, and Nextcloud iOS 4.8.0. No workarounds are available; users must update to these versions or later [1][2].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4- Range: >=3.13.0, <3.25.0
- Range: >=3.0.5, <4.8.0
- nextcloud/security-advisoriesv5Range: >= 3.0.0, < 3.8.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- ethz.ch/content/dam/ethz/special-interest/infk/inst-infsec/appliedcrypto/education/theses/report_DanieleCoppola.pdfmitrex_refsource_MISC
- github.com/nextcloud/desktop/pull/5560mitrex_refsource_MISC
- github.com/nextcloud/security-advisories/security/advisories/GHSA-8875-wxww-3rr8mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.