Nextcloud Server is a Nextcloud package that handles data storage. In versions priot to 19.0.13, 20.0.11, and 21.0.3, Nextcloud Server audit logging functionality wasn't properly logging events for the unsetting of a share expiration date. This event is supposed to be logged. This issue is patched in versions 19.0.13, 20.0.11, and 21.0.3.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
21 Nov 2024, 06:07
Type | Values Removed | Values Added |
---|---|---|
References | () https://github.com/nextcloud/security-advisories/security/advisories/GHSA-fxpq-wq7c-vppf - Third Party Advisory | |
References | () https://github.com/nextcloud/server/pull/27024 - Patch, Third Party Advisory | |
References | () https://hackerone.com/reports/1200810 - Permissions Required | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BVZS26RDME2DYTKET5AECRIZDFUGR2AZ/ - | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J63NBVPR2AQCAWRNDOZSGRY5II4WS2CZ/ - | |
References | () https://security.gentoo.org/glsa/202208-17 - Third Party Advisory |
07 Nov 2023, 03:35
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2021-07-12 14:15
Updated : 2024-11-21 06:07
NVD link : CVE-2021-32680
Mitre link : CVE-2021-32680
CVE.ORG link : CVE-2021-32680
JSON object : View
Products Affected
fedoraproject
- fedora
nextcloud
- nextcloud_server
CWE