Nextcloud Android App (com.nextcloud.client) before v3.16.0 is vulnerable to information disclosure due to searches for sharees being performed by default on the lookup server instead of only using the local Nextcloud server unless a global search has been explicitly chosen by the user.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2021-10034 | Nextcloud Android App (com.nextcloud.client) before v3.16.0 is vulnerable to information disclosure due to searches for sharees being performed by default on the lookup server instead of only using the local Nextcloud server unless a global search has been explicitly chosen by the user. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: hackerone
Published:
Updated: 2024-08-03T18:58:26.359Z
Reserved: 2021-01-06T00:00:00
Link: CVE-2021-22905

No data.

Status : Modified
Published: 2021-06-11T16:15:11.597
Modified: 2024-11-21T05:50:53.157
Link: CVE-2021-22905

No data.

No data.