PT-2019-17680 · Nextcloud · Nextcloud Android App

Blackdex

+1

·

Publicado

2019-07-30

·

Atualizado

2021-11-03

·

CVE-2019-5451

CVSS v3.1

4.6

Média

VetorAV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Nextcloud Android app versions prior to 3.6.1
Description The issue allows bypassing lock protection by repeatedly opening and closing the app in a short time, enabling access to files.
Recommendations For versions prior to 3.6.1, update to version 3.6.1 or later to resolve the issue.

Correção

Missing Authentication

Authentication Bypass Using an Alternate Path or Channel

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-306CWE-288

Identificadores relacionados

CVE-2019-5451

Produtos afetados

Nextcloud Android App