CVE-2018-3775

CVE-2018-3775

Vendor Hackerone
Product Nextcloud Server
Weakness CWE-287 · Improper authentication
Published August 12, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Improper Authentication in Nextcloud Server prior to version 12.0.3 would allow an attacker that obtained user credentials to bypass the 2 Factor Authentication.

Key dates

02Disclosure timeline

August 12, 2018 CVE published
August 5, 2024 Record updated