Description
Dangling remote share attempts in Nextcloud 16 allow a DNS pollution when running long.
References
https://hackerone.com/reports/592864
Permissions Required
https://nextcloud.com/security/advisory/?id=NC-SA-2020-005
Vendor Advisory
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
4.3 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2020-02-04T20:15:12.103
5 years agoLast modified
2020-02-11T18:43:21.183
5 years ago