Insufficient Random Character Set in Nextcloud Server 18.0.4 Encryption Vulnerability

Insufficient Random Character Set in Nextcloud Server 18.0.4 Encryption Vulnerability

CVE-2020-8173 · LOW Severity

CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:L/I:N/A:N

A too small set of random characters being used for encryption in Nextcloud Server 18.0.4 allowed decryption in shorter time than intended.

Learn more about our Cis Benchmark Audit For Server Software.