VDB
CVE-2021-32800
CVE-2021-32800
PUBLISHED
CVSS 8.100000381469727 HIGH
Injection de code indirecte à distance (XSS)
EPSS 0.33% · 56.0th percentile
Risk Scores
CVSS 3.1
8.100000381469727
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
EPSS Score
0.33%
56.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| nextcloud | nextcloud_server | 22.0.0, 0, 21.0.0 |
| nextcloud | security-advisories | *, >= 21.0.0, < 21.0.4, * |
| Nextcloud | N/A |
Exploit Intelligence
Timeline
- Sep 6, 2021 CVE Published
- Sep 8, 2021 EPSS Score
- Nov 5, 2021 EPSS Score
- Jan 1, 2022 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Apr 27, 2022 EPSS Score
- Jun 24, 2022 EPSS Score
- Aug 21, 2022 EPSS Score
- Oct 18, 2022 EPSS Score
- Dec 15, 2022 EPSS Score
References
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-gv5w-8q25-785v url
- https://github.com/nextcloud/server/pull/28078 url
- https://hackerone.com/reports/1271052 url
- GLSA-202208-17 vendor-advisory
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-hgpq-28gj-jrj9 advisory
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-56j9-3rj4-wvgm advisory
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-gcf3-3wmc-88jr advisory
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-pxhh-954f-8w7w advisory
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-mcpf-v65v-359h advisory
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m682-v4g9-wrq7 advisory
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-gvvr-h36p-8mjx advisory
- https://github.com/nextcloud/security-advisories/security/advisories/GHSA-4mxp-j277-82hr advisory