CVE-2018-16463

CVE-2018-16463

Vendor N/A
Product Nextcloud Server
Weakness CWE-384 · Session fixation
Published October 30, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

A bug causing session fixation in Nextcloud Server prior to 14.0.0, 13.0.3 and 12.0.8 could potentially allow an attacker to obtain access to password protected shares.

Key dates

02Disclosure timeline

October 30, 2018 CVE published
August 5, 2024 Record updated