VYPR

apk package

chainguard/nextcloud-server-31

pkg:apk/chainguard/nextcloud-server-31

Vulnerabilities (4)

  • CVE-2026-30964MedMar 10, 2026
    affected < 31.0.14-r2fixed 31.0.14-r2

    web-auth/webauthn-lib is an open source set of PHP libraries and a Symfony bundle to allow developers to integrate that authentication mechanism into their web applications. Prior to 5.2.4, when allowed_origins is configured, CheckAllowedOrigins reduces URL-like values to their h

  • CVE-2026-24739Jan 28, 2026
    affected < 0fixed 0

    Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to versions 5.4.51, 6.4.33, 7.3.11, 7.4.5, and 8.0.5, the Symfony Process component did not correctly treat some characters (notably `=`) as “special” when escaping arguments o

  • CVE-2025-14761MedDec 17, 2025
    affected < 31.0.13-r0fixed 31.0.13-r0

    Missing cryptographic key commitment in the AWS SDK for PHP may allow a user with write access to the S3 bucket to introduce a new EDK that decrypts to different plaintext when the encrypted data key is stored in an "instruction file" instead of S3's metadata record. To mitigate

  • CVE-2025-64500Nov 12, 2025
    affected < 31.0.11-r0fixed 31.0.11-r0

    Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Symfony's HttpFoundation component defines an object-oriented layer for the HTTP specification. Starting in version 2.0.0 and prior to version 5.4.50, 6.4.29, and 7.3.7, the `Request