Disclosure of Calendar and Addressbook Names in Nextcloud Server

Disclosure of Calendar and Addressbook Names in Nextcloud Server

CVE-2017-0895 · LOW Severity

AV:N/AC:M/AU:S/C:P/I:N/A:N

Nextcloud Server before 10.0.4 and 11.0.2 are vulnerable to disclosure of calendar and addressbook names to other logged-in users. Note that no actual content of the calendar and addressbook has been disclosed.

Learn more about our Cis Benchmark Audit For Server Software.