CNNVD-202512-664 Information

CNNVD ID

CNNVD-202512-664

Related CVE

CVE-2025-66510

• CNNVD Published: 2025-12-05

Description (Chinese)

Nextcloud Server是Nextcloud开源的一个Nextcloud服务器程序。 Nextcloud Server存在安全漏洞，该漏洞源于联系人搜索功能访问控制不当，可能导致信息泄露。

Description (English)

Nextcloud Server is a Nextcloud server that is an open source for Nextcloud. Nextcloud Server has a security loophole, which stems from inappropriate access controls of the contact search function, which may lead to the disclosure of information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Nextcloud

Published

2025-12-05

Last Modified

2026-02-24

References

https://github.com/nextcloud/security-advisories/security/advisories/GHSA-495w-cqv6-wr59 https://github.com/nextcloud/server/commit/e4866860cbf24a746eb8a125587262a4c8831c57 https://github.com/nextcloud/server/pull/55657

Patch

https://nextcloud.com/install/