Vulnerability Database

289,782

Total vulnerabilities in the database

CVE-2024-37883

Nextcloud Deck is a kanban style organization tool aimed at personal planning and project organization for teams integrated with Nextcloud. A user with access to a deck board was able to access comments and attachments of already deleted cards. It is recommended that the Nextcloud Deck app is upgraded to 1.6.6 or 1.7.5 or 1.8.7 or 1.9.6 or 1.11.3 or 1.12.1.

  • Published: Jun 14, 2024
  • Updated: Aug 20, 2024
  • CVE: CVE-2024-37883
  • Severity: Low
  • Exploit:

CVSS v3:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
nextcloud / deck 1.6.0 1.6.6
nextcloud / deck 1.7.0 1.7.5
nextcloud / deck 1.8.0 1.8.7
nextcloud / deck 1.9.0 1.9.6
nextcloud / deck 1.11.0 1.11.3
nextcloud / deck 1.12.0 1.12.0.x
nextcloud / deck 1.12.0-beta1 1.12.0-beta1.x
nextcloud / deck 1.12.0-beta2 1.12.0-beta2.x
nextcloud / deck 1.12.0-beta3 1.12.0-beta3.x
nextcloud / deck 1.12.0-beta4 1.12.0-beta4.x
nextcloud / deck 1.12.0-beta5 1.12.0-beta5.x