CVE-2018-16464

CVE-2018-16464

Vendor N/A
Product Nextcloud Server
Weakness CWE-287 · Improper authentication
Published October 30, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

A missing access check in Nextcloud Server prior to 14.0.0 could lead to continued access to password protected link shares when the owner had changed the password.

Key dates

02Disclosure timeline

October 30, 2018 CVE published
August 5, 2024 Record updated