What the vulnerability does

01Description

Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Denial of Service attack. Due to an error in the application logic an authenticated adversary may trigger an endless recursion in the application leading to a potential Denial of Service.

Key dates

02Disclosure timeline

April 5, 2017 CVE published
August 5, 2024 Record updated