説明
Missing validation of server certificates for out-going connections in Nextcloud Social < 0.4.0 allowed a man-in-the-middle attack.
AI分析AIによる分析
影響を受ける製品
nextcloudsocial
参照
- https://hackerone.com/reports/915585ExploitThird Party Advisory
- https://nextcloud.com/security/advisory/?id=NC-SA-2020-043Broken LinkProduct
- https://hackerone.com/reports/915585ExploitThird Party Advisory
- https://nextcloud.com/security/advisory/?id=NC-SA-2020-043Broken LinkProduct