VYPR
Low severity3.3NVD Advisory· Published Jun 1, 2026· Updated Jun 3, 2026

CVE-2026-45277

CVE-2026-45277

Description

Nextcloud is an open source content collaboration platform. Prior to version 2.7.2, authenticated users can check if arbitrary files are associated with specific approval workflows where they can request approval. This issue has been patched in version 2.7.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:nextcloud:approval:*:*:*:*:*:nextcloud:*:*+ 1 more
    • cpe:2.3:a:nextcloud:approval:*:*:*:*:*:nextcloud:*:*range: <2.7.2
    • (no CPE)range: <2.7.2

Patches

Vulnerability mechanics

References

3

News mentions

1