CVE-2023-49792

Nextcloud Server provides data storage for Nextcloud, an open source cloud platform. In Nextcloud Server prior to versions 26.0.9 and 27.1.4; as well as Nextcloud Enterprise Server prior to versions 23.0.12.13, 24.0.12.9, 25.0.13.4, 26.0.9, and 27.1.4; when a (reverse) proxy is configured as trusted proxy the server could be tricked into reading a wrong remote address for an attacker, allowing them executing authentication attempts than intended. Nextcloud Server versions 26.0.9 and 27.1.4 and Nextcloud Enterprise Server versions 23.0.12.13, 24.0.12.9, 25.0.13.4, 26.0.9, and 27.1.4 contain a patch for this issue. No known workarounds are available.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
GitHub_MCNA
5.3 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 56%
VendorProductVersion
nextcloudnextcloud_server
23.0.0 ≤
𝑥
< 23.0.12.13
nextcloudnextcloud_server
24.0.0 ≤
𝑥
< 24.0.12.9
nextcloudnextcloud_server
25.0.0 ≤
𝑥
< 25.0.13.4
nextcloudnextcloud_server
26.0.0 ≤
𝑥
< 26.0.9
nextcloudnextcloud_server
26.0.0 ≤
𝑥
< 26.0.9
nextcloudnextcloud_server
27.0.0 ≤
𝑥
< 27.1.4
nextcloudnextcloud_server
27.0.0 ≤
𝑥
< 27.1.4
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-5j2p-q736-hw98
https://github.com/nextcloud/server/pull/41526
https://hackerone.com/reports/2230915
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-5j2p-q736-hw98
https://github.com/nextcloud/server/pull/41526
https://hackerone.com/reports/2230915