| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2022-31131 | Ownership check missing when updating or deleting mail attachments in Nextcloud mail | nextcloud | security-advisories | Medium | 5.4 | 2022-07-06 17:55:14 | Deep Dive |
| CVE-2022-31014 | SMTP Command Injection in iCalendar Attachments to emails via newlines in Nextcloud Server | nextcloud | security-advisories | Medium | 5.4 | 2022-07-05 17:15:12 | Deep Dive |
| CVE-2022-31024 | Federated editing allows iframing remote servers by default in richdocuments | nextcloud | security-advisories | Medium | 6.5 | 2022-06-02 18:25:11 | Deep Dive |
| CVE-2022-29243 | Improper input-size validation on the user new session name in Nextcloud Server | nextcloud | security-advisories | Medium | 4.3 | 2022-05-31 16:15:14 | Deep Dive |
| CVE-2022-29163 | Bypass of password requirements when sharing a folder via the Circles app in Nextcloud Server | nextcloud | security-advisories | Low | 3.5 | 2022-05-20 16:00:15 | Deep Dive |
| CVE-2022-29160 | Sensitive files/data exist after deletion of user account in Nextcloud Android | nextcloud | security-advisories | Low | 2.8 | 2022-05-20 15:55:10 | Deep Dive |
| CVE-2022-24906 | Error in deleting deck cards attachment reveals the full application path in Nextcloud Deck | nextcloud | security-advisories | Low | 3.5 | 2022-05-20 15:40:17 | Deep Dive |
| CVE-2022-29159 | Possibility for anyone to add a stack with existing tasks on anyone's board in Nextcloud Deck | nextcloud | security-advisories | Medium | 5.0 | 2022-05-20 15:40:10 | Deep Dive |
| CVE-2022-24890 | Exposure of Private Personal Information to an Unauthorized Actor in Nextcloud Talk | nextcloud | security-advisories | Low | 2.4 | 2022-05-17 19:00:15 | Deep Dive |
| CVE-2022-24889 | Insufficient Verification of Data Authenticity in Nextcloud Server | nextcloud | security-advisories | Low | 2.4 | 2022-04-27 14:35:13 | Deep Dive |
| CVE-2022-24888 | Possible Injection in Nextcloud Server | nextcloud | security-advisories | Medium | 4.3 | 2022-04-27 14:25:11 | Deep Dive |
| CVE-2022-24887 | Open Redirect in Nextcloud Talk | nextcloud | security-advisories | Medium | 4.3 | 2022-04-27 13:55:11 | Deep Dive |
| CVE-2022-24886 | Exposure of Sensitive Information to an Unauthorized Actor in com.nextcloud.client | nextcloud | security-advisories | Low | 2.2 | 2022-04-27 13:30:14 | Deep Dive |
| CVE-2022-24885 | Improper Authentication in Nextcloud Android Files | nextcloud | security-advisories | Low | 2.0 | 2022-04-27 13:20:11 | Deep Dive |
| CVE-2022-24838 | Command Injection in Appointment Emails for Nextcloud Calendar | nextcloud | security-advisories | Medium | 5.3 | 2022-04-11 20:25:13 | Deep Dive |
| CVE-2021-41233 | Missing authorization in Nextcloud text | nextcloud | security-advisories | Medium | 6.5 | 2022-03-10 20:30:11 | Deep Dive |
| CVE-2022-24741 | High memory usage in Nextcloud server | nextcloud | security-advisories | Low | 3.5 | 2022-03-09 21:30:13 | Deep Dive |
| CVE-2021-41241 | Advanced permissions is not respected for subfolders in Nextcloud server | nextcloud | security-advisories | Medium | 4.3 | 2022-03-08 18:25:10 | Deep Dive |
| CVE-2021-41239 | User enumeration setting not respected in Nextcloud server | nextcloud | security-advisories | Medium | 5.3 | 2022-03-08 18:05:12 | Deep Dive |
| CVE-2021-41181 | Nextcloud Talk app exposes chat messages on lockscreen | nextcloud | security-advisories | Low | 2.4 | 2022-03-08 17:50:10 | Deep Dive |