CVE-2019-15613

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2019-15613

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-15613.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2019-15613

Downstream

openSUSE-SU-2020:0220-1

openSUSE-SU-2020:0229-1

Related

Published

2020-02-04T20:15:11.870Z

Modified

2026-04-10T04:14:25.309573Z

Severity

8.0 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file extension when checking file mimetypes.

References

Affected packages

Git / github.com/nextcloud/server

Affected ranges

Type

GIT

Repo

https://github.com/nextcloud/server

Events

Introduced

Fixed

dd0b38876d11d81776c9e12bdcc31142059a983e

Introduced

6781f9fc7652f735a75abd869ab3e79878fceec9

Fixed

afa23942a508c16dc99bf6031d522a4d9539bb3a

Introduced

c937c8f1753b111086e28afa396f3abd5776b1db

Fixed

8306acc940c0c8d4c0c3798b742d6ca8be3fcff0

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "15.0.14"
        },
        {
            "introduced": "16.0.0"
        },
        {
            "fixed": "16.0.7"
        },
        {
            "introduced": "17.0.0"
        },
        {
            "fixed": "17.0.2"
        }
    ]
}

Affected versions

15.*

15.0.11

16.*

16.0.4

v1.*

v1.0.0beta1

v11.*

v11.0.0

v11.0RC2

v12.*

v12.0.0beta1

v12.0.0beta2

v12.0.0beta3

v12.0.0beta4

v13.*

v13.0.0RC1

v13.0.0beta1

v13.0.0beta2

v13.0.0beta3

v13.0.0beta4

v14.*

v14.0.0RC1

v14.0.0RC2

v14.0.0beta1

v14.0.0beta2

v14.0.0beta3

v14.0.0beta4

v15.*

v15.0.0

v15.0.0RC1

v15.0.0RC2

v15.0.0RC3

v15.0.0beta1

v15.0.0beta2

v15.0.1

v15.0.10

v15.0.11

v15.0.11RC1

v15.0.12

v15.0.12RC1

v15.0.13

v15.0.13rc1

v15.0.14RC1

v15.0.1RC1

v15.0.1RC2

v15.0.2

v15.0.3

v15.0.3RC1

v15.0.4

v15.0.5

v15.0.5RC1

v15.0.5RC2

v15.0.6

v15.0.6RC1

v15.0.7

v15.0.8

v15.0.8RC1

v15.0.9

v15.0.9RC1

v16.*

v16.0.0

v16.0.1

v16.0.1RC1

v16.0.2

v16.0.2RC1

v16.0.3

v16.0.4

v16.0.4RC1

v16.0.5

v16.0.5RC1

v16.0.6

v16.0.6rc1

v16.0.7RC1

v17.*

v17.0.0

v17.0.1

v17.0.1rc1

v17.0.2RC1

v3.*

v3.0

v4.*

v4.0.0

v4.0.0RC

v4.0.0RC2

v4.0.0beta

v4.0.1

v4.0.4

v4.0.5

v4.0.6

v4.5.0

v4.5.0RC1

v4.5.0RC2

v4.5.0RC3

v4.5.0beta3

v4.5.0beta4

v5.*

v5.0.0

v5.0.0RC1

v5.0.0RC2

v5.0.0RC3

v5.0.0alpha1

v5.0.0beta1

v5.0.0beta2

v6.*

v6.0.0RC1

v6.0.0RC2

v6.0.0alpha2

v6.0.0beta2

v6.0.0beta3

v6.0.0beta4

v6.0.0beta5

v7.*

v7.0.0alpha2

v7.0.0beta1

v8.*

v8.0.0

v8.0.0RC1

v8.0.0RC2

v8.0.0alpha1

v8.0.0alpha2

v8.0.0beta1

v8.0.0beta2

v8.1.0alpha1

v8.1.0alpha2

v8.1.0beta1

v8.1.0beta2

v8.1RC2

v8.2RC1

v8.2beta1

v9.*

v9.0.0beta2

v9.0beta1

v9.1.0beta1

Database specific

unresolved_ranges

[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "sle-15-sp1"
            }
        ]
    }
]

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-15613.json"