CVE List

CVE-2020-8279

Critical 7.4

Missing validation of server certificates for out-going connections in Nextcloud Social < 0.4.0 allowed a man-in-the-middle attack.

Published November 19, 2020.

Affected software

Get alerts for Nextcloud Social

Reference links