First published: Wed Apr 27 2022(Updated: )
Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. Prior to version 3.19.1, users can bypass a lock on the Nextcloud app on an Android device by repeatedly reopening the app. Version 3.19.1 contains a fix for the problem. There are currently no known workarounds.
Credit: security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
Nextcloud Nextcloud | <3.19.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this Nextcloud Android app vulnerability is CVE-2022-24885.
The severity level of CVE-2022-24885 is low.
An attacker can exploit CVE-2022-24885 by repeatedly reopening the Nextcloud app on an Android device to bypass the lock.
The affected software of CVE-2022-24885 is Nextcloud Android app prior to version 3.19.1.
To fix CVE-2022-24885, update your Nextcloud Android app to version 3.19.1 or later.