CVE-2023-48308

Name of the Vulnerable Software and Affected Versions Nextcloud Calendar app versions prior to 4.5.3

Description An issue exists where an attacker can gain access to the stacktrace and internal paths of the server when generating an exception while editing a calendar appointment.

Recommendations For versions prior to 4.5.3, upgrade the Nextcloud Calendar app to version 4.5.3 to resolve the issue. As a temporary workaround, consider restricting access to the calendar editing feature until the upgrade is applied.