How severe is CVE-2017-0886?

CVE-2017-0886 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2017-0886

Name: nextcloud_server
Author: nextcloud

6.5MEDIUM

Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Denial of Service attack. Due to an error in the application logic an authenticated adversary may trigger an endless recursion in the applicati

Publicado: 4/5/2017Actualizado: 4/20/2025

Descripción

Nextcloud Server before 9.0.55 and 10.0.2 suffers from a Denial of Service attack. Due to an error in the application logic an authenticated adversary may trigger an endless recursion in the application leading to a potential Denial of Service.

Análisis IAImpulsado por IA

Productos Afectados

nextcloudnextcloud_server

Referencias

https://hackerone.com/reports/174524
Third Party Advisory
https://nextcloud.com/security/advisory/?id=nc-sa-2017-004
Broken LinkPatchVendor Advisory
https://hackerone.com/reports/174524
Third Party Advisory
https://nextcloud.com/security/advisory/?id=nc-sa-2017-004
Broken LinkPatchVendor Advisory