Security Advisory

CVE-2021-32652

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-06-01 19:05:11

Last updated 2024-08-03 23:25:31

Assigner GitHub_M

State PUBLISHED

Description

Nextcloud Mail is a mail app for the Nextcloud platform. A missing permission check in Nextcloud Mail before 1.4.3 and 1.8.2 allows another authenticated users to access mail metadata of other users. Versions 1.4.3 and 1.8.2 contain patches for this vulnerability; no workarounds other than the patches are known to exist.

← Browse all CVEs View on cve.org ↗