CVE-2025-47792

EUVD-2025-28131
Nextcloud Desktop is the desktop sync client for Nextcloud. In versions of Nextcloud Desktop prior to 3.15, 3rdparty applications already installed on a user machine can create link shares for almost all data via the socket API. These shares can then be easily sent off to an external service. Nextcloud Desktop fixes the issue in version 3.15. No known workarounds are available.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 MEDIUM
LOCAL
HIGH
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
GitHub_MCNA
5 MEDIUM
LOCAL
HIGH
LOW
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
Affected Products (NVD)
VendorProductVersion
nextclouddesktop
𝑥
< 3.15.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
nextcloud-desktop
bookworm
no-dsa
bullseye
postponed
bullseye (security)
vulnerable
forky
4.0.6-1
fixed
sid
4.0.6-1
fixed
trixie
3.16.7-1~deb13u1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
nextcloud-desktop
focal
needs-triage
jammy
needs-triage
noble
needs-triage
oracular
ignored
plucky
not-affected
questing
not-affected
Common Weakness Enumeration
References
https://github.com/nextcloud/desktop/pull/7517
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-qm2f-959g-7p65
https://hackerone.com/reports/1995856