CVE-2019-15610

CVE-2019-15610

Vendor N/A

Product Nextcloud Circles

Weakness CWE-285

Published February 4, 2020

Last update August 5, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Improper authorization in the Circles app 0.17.7 causes retaining access when an email address was removed from a circle.

Key dates

02Disclosure timeline

February 4, 2020 CVE published

August 5, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2019-15610 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/285.html

Related vulnerabilities

04Related CVE

CVE-2025-2528 CVE-2021-36037 Magento Commerce Improper Authorization Vulnerability Could Lead To Information Exposure CVE-2023-32678 Zulip vulnerable to insufficient authorization check for edition/deletion of messages and topics in private streams by former subscribers CVE-2025-24784 kubewarden-controller has an Information leak via AdmissionPolicyGroup Resource CVE-2021-1574 Cisco Business Process Automation Privilege Escalation Vulnerabilities