Vulnerability Details CVE-2021-32694
Nextcloud Android app is the Android client for Nextcloud. In versions prior to 3.15.1, a malicious application on the same device is possible to crash the Nextcloud Android Client due to an uncaught exception. The vulnerability is patched in version 3.15.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.6%
CVSS Severity
CVSS v3 Score 4.1
CVSS v2 Score 4.3
References
- https://github.com/nextcloud/android/pull/7919
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-h2gm-m374-99vc
- https://hackerone.com/reports/859136
- https://github.com/nextcloud/android/pull/7919
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-h2gm-m374-99vc
- https://hackerone.com/reports/859136
Products affected by CVE-2021-32694
-
cpe:2.3:a:nextcloud:nextcloud:1.0.0
-
cpe:2.3:a:nextcloud:nextcloud:1.0.1
-
cpe:2.3:a:nextcloud:nextcloud:1.1.0
-
cpe:2.3:a:nextcloud:nextcloud:1.2.0
-
cpe:2.3:a:nextcloud:nextcloud:1.3.0
-
cpe:2.3:a:nextcloud:nextcloud:1.3.1
-
cpe:2.3:a:nextcloud:nextcloud:1.4.0
-
cpe:2.3:a:nextcloud:nextcloud:1.4.1
-
cpe:2.3:a:nextcloud:nextcloud:1.4.2
-
cpe:2.3:a:nextcloud:nextcloud:1.4.3
-
cpe:2.3:a:nextcloud:nextcloud:2.0.0
-
cpe:2.3:a:nextcloud:nextcloud:2.0.1
-
cpe:2.3:a:nextcloud:nextcloud:3.0.0
-
cpe:2.3:a:nextcloud:nextcloud:3.0.1
-
cpe:2.3:a:nextcloud:nextcloud:3.0.2
-
cpe:2.3:a:nextcloud:nextcloud:3.0.3
-
cpe:2.3:a:nextcloud:nextcloud:3.1.0
-
cpe:2.3:a:nextcloud:nextcloud:3.10.0
-
cpe:2.3:a:nextcloud:nextcloud:3.2.0
-
cpe:2.3:a:nextcloud:nextcloud:3.2.1
-
cpe:2.3:a:nextcloud:nextcloud:3.2.2
-
cpe:2.3:a:nextcloud:nextcloud:3.2.3
-
cpe:2.3:a:nextcloud:nextcloud:3.2.4
-
cpe:2.3:a:nextcloud:nextcloud:3.3.0
-
cpe:2.3:a:nextcloud:nextcloud:3.3.1
-
cpe:2.3:a:nextcloud:nextcloud:3.3.2
-
cpe:2.3:a:nextcloud:nextcloud:3.4.0
-
cpe:2.3:a:nextcloud:nextcloud:3.4.1
-
cpe:2.3:a:nextcloud:nextcloud:3.4.2
-
cpe:2.3:a:nextcloud:nextcloud:3.5.0
-
cpe:2.3:a:nextcloud:nextcloud:3.5.1
-
cpe:2.3:a:nextcloud:nextcloud:3.6.0
-
cpe:2.3:a:nextcloud:nextcloud:3.6.1
-
cpe:2.3:a:nextcloud:nextcloud:3.6.2
-
cpe:2.3:a:nextcloud:nextcloud:3.7.0
-
cpe:2.3:a:nextcloud:nextcloud:3.7.1
-
cpe:2.3:a:nextcloud:nextcloud:3.9.0
-
cpe:2.3:a:nextcloud:nextcloud:3.9.1
-
cpe:2.3:a:nextcloud:nextcloud:3.9.2