Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-41179

Nextcloud is an open-source, self-hosted productivity platform. Prior to Nextcloud Server versions 20.0.13, 21.0.5, and 22.2.0, the Two-Factor Authentication wasn't enforced for pages marked as public. Any page marked as `@PublicPage` could thus be accessed with a valid user session that isn't authenticated. This particularly affects the Nextcloud Talk application, as this could be leveraged to gain access to any private chat channel without going through the Two-Factor flow. It is recommended that the Nextcloud Server be upgraded to 20.0.13, 21.0.5 or 22.2.0. There are no known workarounds aside from upgrading.

Published

2021-10-25T22:15:07.990

Last Modified

2024-11-21T06:25:41.217

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: SINGLE
Confidentiality Impact: PARTIAL
Integrity Impact: NONE
Availability Impact: NONE

Exploitability Score

8.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-304

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	nextcloud	server	< 20.0.13	Yes
Application	nextcloud	server	< 21.0.5	Yes
Application	nextcloud	server	< 22.2.0	Yes

References

https://github.com/nextcloud/security-advisories/security/advisories/GHSA-7hvh-rc6f-px23 Third Party Advisory ([email protected])
https://github.com/nextcloud/server/pull/28725 Patch, Third Party Advisory ([email protected])
https://hackerone.com/reports/1322865 Permissions Required ([email protected])
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-7hvh-rc6f-px23 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/nextcloud/server/pull/28725 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://hackerone.com/reports/1322865 Permissions Required (af854a3a-2127-422b-91ae-364da2661108)