Auth bypass in Nextcloud Mail
CVE-2023-25160
Nextcloud Mail is an email app for the Nextcloud home server platform. Prior to versions 2.2.1, 1.14.5, 1.12.9, and 1.11.8, an attacker can access the mail box by ID getting the subjects and the first characters of the emails. Users should…
Vulnerability class: IDOR (Insecure Direct Object Reference)
EPSS: 0.005 (36.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.1 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N.
Affected products
- Nextcloud Mail
- Nextcloud Security-advisories — versions < 1.11.8, >= 1.12.0, < 1.12.9, >= 1.13.0, < 1.14.5
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM, Vendor Advisory)
- security-advisories@github.com (Patch, x_refsource_MISC)
- security-advisories@github.com (Permissions Required, Third Party Advisory, x_refsource_MISC)
Frequently asked questions
- What is CVE-2023-25160?
- CVE-2023-25160 is a medium-severity vulnerability in Nextcloud Mail, classified under Authorization Bypass Through User-Controlled Key. CVSS score: 4.1/10. Published 2023-02-13.
- How severe is CVE-2023-25160?
- Medium severity. CVSS v3 base score is 4.1 out of 10.