CVE Vulnerabilities

CVE-2019-15610

Published: Feb 04, 2020 | Modified: Oct 09, 2020
CVSS 3.x
4.3
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Improper authorization in the Circles app 0.17.7 causes retaining access when an email address was removed from a circle.

Affected Software

Name Vendor Start Version End Version
Circles Nextcloud * 0.16.11 (excluding)
Circles Nextcloud 0.16.12 (including) 0.17.8 (excluding)

References