| Summary | Nextcloud Server is a self hosted personal cloud system. MD5 hashes were used to check background jobs for their uniqueness. This increased the chances of a background job with arguments falsely being identified as already existing and not be queued for execution. By changing the Hash to SHA256 the probability was heavily decreased. It is recommended that the Nextcloud Server is upgraded to 28.0.10, 29.0.7 or 30.0.0. |
|---|---|
| Publication Date | Nov. 16, 2024, 2:15 a.m. |
| Registration Date | Nov. 16, 2024, 5 a.m. |
| Last Update | Nov. 19, 2024, 2:11 a.m. |
| Title | Nextcloud の Nextcloud Server における脆弱性 |
|---|---|
| Summary | Nextcloud の Nextcloud Server には、不特定の脆弱性が存在します。 |
| Possible impacts | 情報を改ざんされる可能性があります。 |
| Solution | ベンダアドバイザリまたはパッチ情報が公開されています。参考情報を参照して適切な対策を実施してください。 |
| Publication Date | Nov. 15, 2024, midnight |
| Registration Date | Jan. 24, 2025, 2:47 p.m. |
| Last Update | Jan. 24, 2025, 2:47 p.m. |
| Nextcloud |
| Nextcloud Server 28.0.0 以上 28.0.10 未満 |
| Nextcloud Server 29.0.0 以上 29.0.7 未満 |
| No | Changed Details | Date of change |
|---|---|---|
| 1 | [2025年01月24日] 掲載 |
Jan. 24, 2025, 2:47 p.m. |