Back to search
CVE-2021-22912
Published: Jun 11, 2021
Modified: Aug 3, 2024
PUBLISHED
Description
Nextcloud iOS before 3.4.2 suffers from an information disclosure vulnerability when searches for sharees utilize the lookup server by default instead of only on the local Nextcloud server unless a global search has been explicitly chosen by the user.
| Vendor | Product | Versions |
|---|---|---|
n/a | Nextcloud iOS app (it.twsweb.Nextcloud) | affected Fixed in 3.4.2 |
Weaknesses (CWE)
References
https://hackerone.com/reports/1167919
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now