First published: Mon Apr 17 2023(Updated: )
Credit: security-advisories@github.com
Affected Software | Affected Version | How to fix |
---|---|---|
Nextcloud Nextcloud Files Automated Tagging | >=1.14.0<1.14.2 | |
Nextcloud Nextcloud Files Automated Tagging | >=1.15.0<1.15.3 | |
Nextcloud Nextcloud Files Automated Tagging | =1.11.0 | |
Nextcloud Nextcloud Files Automated Tagging | =1.12.0 | |
Nextcloud Nextcloud Files Automated Tagging | =1.13.0 | |
Nextcloud Nextcloud Files Automated Tagging | =1.16.0 | |
Nextcloud Nextcloud Server | >=21.0.0<21.0.9.11 | |
Nextcloud Nextcloud Server | >=22.0.0<22.2.10.11 | |
Nextcloud Nextcloud Server | >=23.0.0<23.0.12.6 | |
Nextcloud Nextcloud Server | >=24.0.0<24.0.11 | |
Nextcloud Nextcloud Server | >=24.0.0<24.0.11 | |
Nextcloud Nextcloud Server | >=25.0.0<25.0.5 | |
Nextcloud Nextcloud Server | >=25.0.0<25.0.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-30539 is a vulnerability in Nextcloud Files Automated Tagging that can be exploited to limit or grant access to files based on system tags or retention rules.
CVE-2023-30539 has a severity rating of 8.8, which is considered high.
The affected software versions include Nextcloud Files Automated Tagging versions 1.11.0 to 1.16.0 and Nextcloud Server versions 21.0.0 to 25.0.5.
To fix CVE-2023-30539, it is recommended to update Nextcloud Files Automated Tagging to version 1.16.1 or later, and Nextcloud Server to version 25.0.6 or later.
You can find more information about CVE-2023-30539 on the Nextcloud security advisories page.