Description
Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.12, and 32.0.0 to before 32.0.3, a missing check of a relation allowed authenticated users with access to any file comment, to read the content of all comments. It is recommended that the Nextcloud Server is upgraded to 31.0.12 or 32.0.3. It is recommended that the Nextcloud Enterprise Server is upgraded to 21.0.9.20, 22.2.10.35, 23.0.12.31, 24.0.12.30, 25.0.13.25, 26.0.13.22, 27.1.11.22, 28.0.14.13, 29.0.16.10, 30.0.17.5, 31.0.12 or 32.0.3
Published: 2026-06-01
Score: 6.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A missing check of a relation in Nextcloud Server allows an authenticated user who can read any file comment to read the content of all comments, enabling the disclosure of sensitive discussion data across files.

Affected Systems

The vulnerability affects Nextcloud Server versions 31.0.0 up to but not including 31.0.12, and 32.0.0 up to but not including 32.0.3. For Enterprise Server, all releases prior to the patched versions 21.0.9.20, 22.2.10.35, 23.0.12.31, 24.0.12.30, 25.0.13.25, 26.0.13.22, 27.1.11.22, 28.0.14.13, 29.0.16.10, 30.0.17.5, 31.0.12, and 32.0.3 are vulnerable.

Risk and Exploitability

The CVSS score of 6.8 indicates moderate severity. EPSS data is unavailable, and the vulnerability is not listed in the CISA KEV catalog, implying the current exploitation likelihood is uncertain. The attack requires authentication to a file that contains a comment and an ability to read any comment; therefore, it leverages an authorization bypass (CWE‑639) that allows a user to read all comment data.

Generated by OpenCVE AI on June 1, 2026 at 21:39 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to the latest Nextcloud Server or Enterprise release that includes the patch (31.0.12, 32.0.3, or the applicable Enterprise releases).
  • If upgrade is delayed, restrict comment permissions so users can only view comments on files they own, reducing exposure.
  • Disable comment functionality for sensitive files or globally if comment features are not required, mitigating the risk of accidental disclosure.

Generated by OpenCVE AI on June 1, 2026 at 21:39 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 04 Jun 2026 17:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:-:*:*:*
cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*

Wed, 03 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
First Time appeared Nextcloud
Nextcloud nextcloud Server
Vendors & Products Nextcloud
Nextcloud nextcloud Server

Tue, 02 Jun 2026 13:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 01 Jun 2026 19:00:00 +0000

Type Values Removed Values Added
Description Nextcloud is an open source content collaboration platform. In Nextcloud Server from versions 31.0.0 to before 31.0.12, and 32.0.0 to before 32.0.3, a missing check of a relation allowed authenticated users with access to any file comment, to read the content of all comments. It is recommended that the Nextcloud Server is upgraded to 31.0.12 or 32.0.3. It is recommended that the Nextcloud Enterprise Server is upgraded to 21.0.9.20, 22.2.10.35, 23.0.12.31, 24.0.12.30, 25.0.13.25, 26.0.13.22, 27.1.11.22, 28.0.14.13, 29.0.16.10, 30.0.17.5, 31.0.12 or 32.0.3
Title Nextcloud: Propfind requests for file comments allowed to load comments for other files
Weaknesses CWE-639
References
Metrics cvssV3_1

{'score': 6.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N'}

Subscriptions

Nextcloud Nextcloud Server
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-02T12:48:15.018Z

Reserved: 2026-05-13T08:19:32.605Z

Link: CVE-2026-45810

cve-icon Vulnrichment

Updated: 2026-06-02T12:48:09.675Z

cve-icon NVD

Status : Analyzed

Published: 2026-06-01T19:16:53.357

Modified: 2026-06-04T16:51:19.930

Link: CVE-2026-45810

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-02T20:53:33Z

Weaknesses
  • CWE-639

    Authorization Bypass Through User-Controlled Key