CVE-2024-37882
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-37882
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-37882.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-37882
- Related
- Published
- 2024-06-14T16:15:12Z
- Modified
- 2025-02-19T03:45:37.061833Z
- Severity
-
- 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Nextcloud Server is a self hosted personal cloud system. A recipient of a share with read&share permissions could reshare the item with more permissions. It is recommended that the Nextcloud Server is upgraded to 26.0.13 or 27.1.8 or 28.0.4 and that the Nextcloud Enterprise Server is upgraded to 26.0.13 or 27.1.8 or 28.0.4.
- References
Affected packages
Git / github.com/nextcloud/server
Affected versions
v26.*
v26.0.0
v26.0.1
v26.0.10
v26.0.10rc1
v26.0.11
v26.0.11rc1
v26.0.11rc2
v26.0.12
v26.0.12rc1
v26.0.12rc2
v26.0.13rc1
v26.0.1rc1
v26.0.2
v26.0.2rc1
v26.0.3
v26.0.3rc1
v26.0.3rc2
v26.0.4
v26.0.4rc1
v26.0.4rc2
v26.0.5
v26.0.5rc1
v26.0.6
v26.0.6rc1
v26.0.7
v26.0.8
v26.0.8rc1
v26.0.8rc2
v26.0.9
v26.0.9rc1