CVE-2023-23942

low-risk
Published 2023-02-06

The Nextcloud Desktop Client is a tool to synchronize files from a Nextcloud Server with your computer. Versions prior to 3.6.3 are missing sanitisation on qml labels which are used for basic HTML elements such as `strong`, `em` and `head` lines in the UI of the desktop client. The lack of sanitisation may allow for javascript injection. It is recommended that the Nextcloud Desktop Client is upgraded to 3.6.3. There are no known workarounds for this issue.

Do I need to act?

~
1.2% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.4/10 Medium
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Nextcloud

References (6)

Patch https://github.com/nextcloud/desktop/pull/5233
Vendor Advisory https://github.com/nextcloud/security-advisories/security/advisories/GHSA-64qc-v...
Permissions Required https://hackerone.com/reports/1788598
Patch https://github.com/nextcloud/desktop/pull/5233
Vendor Advisory https://github.com/nextcloud/security-advisories/security/advisories/GHSA-64qc-v...
Permissions Required https://hackerone.com/reports/1788598
29
/ 100
low-risk
Severity 21/34 · High
Exploitability 3/34 · Minimal
Exposure 5/34 · Minimal