CVE-2024-52507

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-52507

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-52507.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2024-52507

Aliases

GHSA-rgvc-xr2w-qq45

Published

2024-11-15T17:24:50.173Z

Modified

2026-02-07T02:52:19.856171Z

Severity

3.5 (Low) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N CVSS Calculator

Summary

Share information of the Nextcloud Tables app is not limited to affected users

Details

Nextcloud Tables allows users to to create tables with individual columns. The information which Table (numeric ID) is shared with which groups and users and the respective permissions was not limited to affected users. It is recommended that the Nextcloud Tables app is upgraded to 0.8.1.

Database specific

{
    "cwe_ids": [
        "CWE-639"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/52xxx/CVE-2024-52507.json",
    "cna_assigner": "GitHub_M"
}

References

Affected packages

Git / github.com/nextcloud/tables

Affected ranges

Type: GIT
Repo: https://github.com/nextcloud/tables
Events: Introduced

17077f106f4cf0175f130c7f33848f16d867f80c

Fixed

45f7e3dcc2a97acb549779fcaf15679054b23eb8

Affected versions

v0.*

v0.3.0

v0.3.1

v0.3.2

v0.3.3

v0.4.0

v0.5.0

v0.5.1

v0.6.0

v0.6.0-beta.1

v0.6.0-beta.2

v0.6.0-beta.3

v0.6.0-beta.4

v0.7.0

v0.7.0-beta.1

v0.7.0-beta.2

v0.7.0-beta.3

v0.8.0-beta.1

v0.8.0-beta.2

v0.8.0-beta.3

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-52507.json"