Session Fixation Vulnerability in Nextcloud Server Prior to 14.0.0, 13.0.3, and 12.0.8

Session Fixation Vulnerability in Nextcloud Server Prior to 14.0.0, 13.0.3, and 12.0.8

CVE-2018-16463 · LOW Severity

AV:N/AC:H/AU:S/C:P/I:P/A:N

A bug causing session fixation in Nextcloud Server prior to 14.0.0, 13.0.3 and 12.0.8 could potentially allow an attacker to obtain access to password protected shares.

Learn more about our Cis Benchmark Audit For Server Software.