Exposure of Private Information in Nextcloud Server 16.0.1 causes the server to send its domain and user IDs to the Nextcloud Lookup Server without any further data when the Lookup server is disabled.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Nextcloud_server | Nextcloud | * | 14.0.13 (excluding) |
Nextcloud_server | Nextcloud | 15.0.0 (including) | 15.0.9 (excluding) |
Nextcloud_server | Nextcloud | 16.0.0 (including) | 16.0.2 (excluding) |