Nextcloud: >> Social >> 0.3.1 Security Vulnerabilities
Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user.
CVSS Score
5.3
EPSS Score
0.002
Published
2020-11-19
Missing validation of server certificates for out-going connections in Nextcloud Social < 0.4.0 allowed a man-in-the-middle attack.
CVSS Score
7.4
EPSS Score
0.001
Published
2020-11-19