What the vulnerability does

01Description

A missing verification of the TLS host in Nextcloud Mail 1.1.3 allowed a man in the middle attack.

Key dates

02Disclosure timeline

May 12, 2020 CVE published
August 4, 2024 Record updated