CVE-2018-3775

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Nextcloud Server versions prior to 12.0.3

Description The issue allows an attacker with obtained user credentials to bypass 2 Factor Authentication due to improper authentication.

Recommendations For versions prior to 12.0.3, update to version 12.0.3 or later to resolve the issue.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

ALT-PU-2017-2277

CVE-2018-3775

Alt Linux

Nextcloud Server