CVE-2026-45279

EUVD-2026-33705
Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.14, and 32.0.0 to before 32.0.4, if {lang} is used in the template directory config value, non-admin users can in some cases copy arbitrary files (depending on unix permissions) into their own Nextcloud directory via a path traversal. It is recommended that the Nextcloud Server is upgraded to 32.0.4, 31.0.14. It is recommended that the Nextcloud Enterprise Server is upgraded to 32.0.4, 31.0.14, 30.0.17.7, 29.0.17.12, 28.0.14.15
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.4 MEDIUM
NETWORK
HIGH
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 31%
Affected Products (NVD)
VendorProductVersion
nextcloudnextcloud_server
31.0.0 ≤
𝑥
< 31.0.14
nextcloudnextcloud_server
32.0.0 ≤
𝑥
< 32.0.4
nextcloudnextcloud_server
28.0.0 ≤
𝑥
< 28.0.14.15
nextcloudnextcloud_server
29.0.0 ≤
𝑥
< 29.0.17.12
nextcloudnextcloud_server
30.0.0 ≤
𝑥
< 30.0.17.7
nextcloudnextcloud_server
31.0.0 ≤
𝑥
< 31.0.14
nextcloudnextcloud_server
32.0.0 ≤
𝑥
< 32.0.4
𝑥
= Vulnerable software versions