Security Advisory

CVE-2021-22905

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-11 15:49:39

Last updated 2024-08-03 18:58:26

Assigner hackerone

State PUBLISHED

Description

Nextcloud Android App (com.nextcloud.client) before v3.16.0 is vulnerable to information disclosure due to searches for sharees being performed by default on the lookup server instead of only using the local Nextcloud server unless a global search has been explicitly chosen by the user.

← Browse all CVEs View on cve.org ↗