What the vulnerability does

01Description

Improper preservation of permissions in Nextcloud Server 14.0.3 causes the event details to be leaked when sharing a non-public event.

Key dates

02Disclosure timeline

February 4, 2020 CVE published
August 4, 2024 Record updated