Nextcloud · Nextcloud Server · CVE-2018-3775
**Name of the Vulnerable Software and Affected Versions**
Nextcloud Server versions prior to 12.0.3
**Description**
The issue allows an attacker with obtained user credentials to bypass 2 Factor Authentication due to improper authentication.
**Recommendations**
For versions prior to 12.0.3, update to version 12.0.3 or later to resolve the issue.