Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-66552
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Nextcloud Server admin_audit does not log all actions on files in groupfolders
Source: NVD (National Vulnerability Database)
Vulnerability Description
Nextcloud Server is a self hosted personal cloud system. In Nextcloud Server and Enterprise Server prior to 30.0.9 and 31.0.1, incorrect path handling with groupfolders caused the admin_audit app to not properly log all actions on files and folders inside groupfolders. This vulnerability is fixed in Nextcloud Server and Enterprise Server prior to 30.0.9 and 31.0.1.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
不充分的日志记录
Source: NVD (National Vulnerability Database)
Vulnerability Title
Nextcloud Server 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Nextcloud Server是Nextcloud开源的一个Nextcloud服务器程序。 Nextcloud Server存在安全漏洞,该漏洞源于组文件夹路径处理不当,可能导致日志记录不全。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
nextcloudsecurity-advisories >= 32.0.0beta1, < 32.0.1 -
II. Public POCs for CVE-2025-66552
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2025-66552
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: security-advisories
Same vendor: nextcloud
Same weakness: CWE-778
V. Comments for CVE-2025-66552

No comments yet

Leave a comment