CVE-2023-28645

Name of the Vulnerable Software and Affected Versions Nextcloud richdocuments versions prior to 6.3.2 Nextcloud richdocuments versions prior to 7.0.2 Nextcloud richdocuments versions prior to 8.0.0-beta.1

Description The secure view feature of the rich documents app can be bypassed by using an unprotected internal API endpoint of the rich documents app. This allows unauthorized access to sensitive documents. To mitigate the issue, users can restrict the ability to download documents by configuring the WOPI configuration to only serve documents between Nextcloud and Collabora. It is also recommended to define the list of Collabora server IPs as the allow list within the Office admin settings of Nextcloud.

Recommendations For versions prior to 6.3.2, upgrade to 6.3.2 or later. For versions prior to 7.0.2, upgrade to 7.0.2 or later. For versions prior to 8.0.0-beta.1, upgrade to 8.0.0-beta.1 or later. As a temporary workaround, consider restricting the ability to download documents by configuring the WOPI configuration to only serve documents between Nextcloud and Collabora. Restrict access to the internal API endpoint of the rich documents app to minimize the risk of exploitation. Define the list of Collabora server IPs as the allow list within the Office admin settings of Nextcloud to further mitigate the issue.