What the vulnerability does

01Description

A wrong generation of the passphrase for the encrypted block in Nextcloud Server 19.0.1 allowed an attacker to overwrite blocks in a file.

Key dates

02Disclosure timeline

November 9, 2020 CVE published
August 4, 2024 Record updated