Nextcloud · Nextcloud Server · CVE-2018-3762
**Name of the Vulnerable Software and Affected Versions**
Nextcloud Server versions prior to 12.0.8
Nextcloud Server versions prior to 13.0.3
**Description**
The issue arises from improper checks of dropped permissions for incoming shares, allowing a user to request previews for files they should not have access to.
**Recommendations**
For versions prior to 12.0.8, update to version 12.0.8 or later.
For versions prior to 13.0.3, update to version 13.0.3 or later.