Total vulnerabilities in the database
An authenticated server-side request forgery in Nextcloud server 16.0.1 allowed to detect local and remote services when adding a new subscription in the calendar application.
| Software | From | Fixed in |
|---|---|---|
| nextcloud / nextcloud_server | 16.0.0 | 16.0.2 |
| nextcloud / nextcloud_server | - | 15.0.9 |
| novell / suse_linux_enterprise_server | 12.0 | 12.0.x |
| opensuse / backports_sle | 15.0-sp1 | 15.0-sp1.x |