Description
Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.13, 20.011, and 21.0.3, webauthn tokens were not deleted after a user has been deleted. If a victim reused an earlier used username, the previous user could gain access to their account. The issue was fixed in versions 19.0.13, 20.0.11, and 21.0.3. There are no known workarounds.
Related CPE's
a
nextcloud
nextcloud_server
References
https://github.com/nextcloud/server/pull/27532
https://hackerone.com/reports/1202590
https://security.gentoo.org/glsa/202208-17
CVSS impact metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 · Critical
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2021-07-12T20:15:10.037
3 years agoLast modified
2022-10-25T15:33:09.360
2 years ago