cnvd - cnvd-2021-44760

cnvd-2021-44760

Vulnerability from cnvd

Title: Nextcloud Android app信息泄露漏洞（CNVD-2021-44760）

Description:

Nextcloud Android app是德国Nextcloud公司的一款基于Android平台，用于访问Nextcloud服务器的移动应用程序。

Nextcloud Android app存在信息泄露漏洞，攻击者通过诱使受害者打开特制的应用程序，可以利用该漏洞获取Nextcloud Android应用程序中的共享首选项信息。

Severity: 中

Patch Name: Nextcloud Android app信息泄露漏洞（CNVD-2021-44760）的补丁

Patch Description:

Nextcloud Android app是德国Nextcloud公司的一款基于Android平台，用于访问Nextcloud服务器的移动应用程序。

Nextcloud Android app存在信息泄露漏洞，攻击者通过诱使受害者打开特制的应用程序，可以利用该漏洞获取Nextcloud Android应用程序中的共享首选项信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

厂商已发布了漏洞修复程序，请及时关注更新： https://github.com/nextcloud/security-advisories/security/advisories/GHSA-25m9-cf6c-qf2c

Reference: https://exchange.xforce.ibmcloud.com/vulnerabilities/204018

Impacted products

Name
Nextcloud Nextcloud Android app

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-32695"
    }
  },
  "description": "Nextcloud Android app\u662f\u5fb7\u56fdNextcloud\u516c\u53f8\u7684\u4e00\u6b3e\u57fa\u4e8eAndroid\u5e73\u53f0\uff0c\u7528\u4e8e\u8bbf\u95eeNextcloud\u670d\u52a1\u5668\u7684\u79fb\u52a8\u5e94\u7528\u7a0b\u5e8f\u3002\n\nNextcloud Android app\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u901a\u8fc7\u8bf1\u4f7f\u53d7\u5bb3\u8005\u6253\u5f00\u7279\u5236\u7684\u5e94\u7528\u7a0b\u5e8f\uff0c\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6Nextcloud Android\u5e94\u7528\u7a0b\u5e8f\u4e2d\u7684\u5171\u4eab\u9996\u9009\u9879\u4fe1\u606f\u3002",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://github.com/nextcloud/security-advisories/security/advisories/GHSA-25m9-cf6c-qf2c",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-44760",
  "openTime": "2021-06-23",
  "patchDescription": "Nextcloud Android app\u662f\u5fb7\u56fdNextcloud\u516c\u53f8\u7684\u4e00\u6b3e\u57fa\u4e8eAndroid\u5e73\u53f0\uff0c\u7528\u4e8e\u8bbf\u95eeNextcloud\u670d\u52a1\u5668\u7684\u79fb\u52a8\u5e94\u7528\u7a0b\u5e8f\u3002\r\n\r\nNextcloud Android app\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u901a\u8fc7\u8bf1\u4f7f\u53d7\u5bb3\u8005\u6253\u5f00\u7279\u5236\u7684\u5e94\u7528\u7a0b\u5e8f\uff0c\u53ef\u4ee5\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6Nextcloud Android\u5e94\u7528\u7a0b\u5e8f\u4e2d\u7684\u5171\u4eab\u9996\u9009\u9879\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Nextcloud Android app\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2021-44760\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Nextcloud Nextcloud Android app"
  },
  "referenceLink": "https://exchange.xforce.ibmcloud.com/vulnerabilities/204018",
  "serverity": "\u4e2d",
  "submitTime": "2021-06-22",
  "title": "Nextcloud Android app\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2021-44760\uff09"
}

CVE-2021-32695 (GCVE-0-2021-32695)

Vulnerability from cvelistv5

Published

2021-06-17 20:50

Modified

2024-08-03 23:25

Severity ?

3.9 (Low) - CVSS:3.1/AV:P/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

CWE

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

Summary

Nextcloud Android app is the Android client for Nextcloud. In versions prior to 3.16.1, a malicious app on the same device could have gotten access to the shared preferences of the Nextcloud Android application. This required user-interaction as a victim had to initiate the sharing flow and choose the malicious app. The shared preferences contain some limited private data such as push tokens and the account name. The vulnerability is patched in version 3.16.1.

References

▼	URL	Tags
	https://github.com/nextcloud/security-advisories/security/advisories/GHSA-25m9-cf6c-qf2c	x_refsource_CONFIRM
	https://github.com/nextcloud/android/pull/8433	x_refsource_MISC
	https://hackerone.com/reports/1142918	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	nextcloud	security-advisories	Version: < 3.16.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T23:25:31.133Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-25m9-cf6c-qf2c"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://github.com/nextcloud/android/pull/8433"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://hackerone.com/reports/1142918"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "security-advisories",
          "vendor": "nextcloud",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 3.16.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Nextcloud Android app is the Android client for Nextcloud. In versions prior to 3.16.1, a malicious app on the same device could have gotten access to the shared preferences of the Nextcloud Android application. This required user-interaction as a victim had to initiate the sharing flow and choose the malicious app. The shared preferences contain some limited private data such as push tokens and the account name. The vulnerability is patched in version 3.16.1."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "PHYSICAL",
            "availabilityImpact": "LOW",
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-200",
              "description": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-06-17T20:50:11",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-25m9-cf6c-qf2c"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/nextcloud/android/pull/8433"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://hackerone.com/reports/1142918"
        }
      ],
      "source": {
        "advisory": "GHSA-25m9-cf6c-qf2c",
        "discovery": "UNKNOWN"
      },
      "title": "Malicious Android app could access Shared Preferences of the Nextcloud Android client",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-advisories@github.com",
          "ID": "CVE-2021-32695",
          "STATE": "PUBLIC",
          "TITLE": "Malicious Android app could access Shared Preferences of the Nextcloud Android client"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "security-advisories",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "\u003c 3.16.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "nextcloud"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Nextcloud Android app is the Android client for Nextcloud. In versions prior to 3.16.1, a malicious app on the same device could have gotten access to the shared preferences of the Nextcloud Android application. This required user-interaction as a victim had to initiate the sharing flow and choose the malicious app. The shared preferences contain some limited private data such as push tokens and the account name. The vulnerability is patched in version 3.16.1."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "PHYSICAL",
            "availabilityImpact": "LOW",
            "baseScore": 3.9,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-25m9-cf6c-qf2c",
              "refsource": "CONFIRM",
              "url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-25m9-cf6c-qf2c"
            },
            {
              "name": "https://github.com/nextcloud/android/pull/8433",
              "refsource": "MISC",
              "url": "https://github.com/nextcloud/android/pull/8433"
            },
            {
              "name": "https://hackerone.com/reports/1142918",
              "refsource": "MISC",
              "url": "https://hackerone.com/reports/1142918"
            }
          ]
        },
        "source": {
          "advisory": "GHSA-25m9-cf6c-qf2c",
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2021-32695",
    "datePublished": "2021-06-17T20:50:11",
    "dateReserved": "2021-05-12T00:00:00",
    "dateUpdated": "2024-08-03T23:25:31.133Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted