Security Advisory

CVE-2020-8139

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-20 20:14:30

Last updated 2024-08-04 09:48:25

Assigner hackerone

State PUBLISHED

Description

A missing access control check in Nextcloud Server < 18.0.1, < 17.0.4, and < 16.0.9 causes hide-download shares to be downloadable when appending /download to the URL.

← Browse all CVEs View on cve.org ↗