PT-2023-8428 · Nextcloud+1 · Nextcloud Text+2
Nickvergessen
·
Published
2023-05-26
·
Updated
2025-01-24
·
CVE-2023-32318
CVSS v3.1
7.2
High
| Vector | AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Nextcloud Server versions prior to 25.0.6
Nextcloud Server versions prior to 26.0.1
Description
A regression in the session handling between Nextcloud Server and the Nextcloud Text app prevented a correct destruction of the session on logout if cookies were not cleared manually. After successfully authenticating with any other account, the previous session would be continued and the attacker would be authenticated as the previously logged in user. This issue is related to incorrect session expiration.
Recommendations
For Nextcloud Server versions prior to 25.0.6, upgrade to 25.0.6 to resolve the issue.
For Nextcloud Server versions prior to 26.0.1, upgrade to 26.0.1 to resolve the issue.
As a temporary workaround, consider clearing cookies manually after logout to prevent session continuation.
Exploit
Fix
Insufficient Session Expiration
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Nextcloud Server
Nextcloud Text