CVE-2022-39364

Public Exploit

Exception logging in Sharepoint app reveals clear-text connection details

Description

Nextcloud Server is the file server software for Nextcloud, a self-hosted productivity platform. In Nextcloud Server prior to versions 23.0.9 and 24.0.5 and Nextcloud Enterprise Server prior to versions 22.2.10.5, 23.0.9, and 24.0.5 an attacker reading `nextcloud.log` may gain knowledge of credentials to connect to a SharePoint service. Nextcloud Server versions 23.0.9 and 24.0.5 and Nextcloud Enterprise Server versions 22.2.10.5, 23.0.9, and 24.0.5 contain a patch for this issue. As a workaround, set `zend.exception_ignore_args = On` as an option in `php.ini`.

References

Link	Tags
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-qpf5-jj85-36h5	third party advisory
https://github.com/nextcloud/sharepoint/issues/141	issue tracking exploit third party advisory
https://github.com/nextcloud/server/pull/33689	third party advisory patch
https://hackerone.com/reports/1652903	third party advisory permissions required

Frequently Asked Questions

What is the severity of CVE-2022-39364?: CVE-2022-39364 has been scored as a medium severity vulnerability.
How to fix CVE-2022-39364?: To fix CVE-2022-39364, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2022-39364 being actively exploited in the wild?: It is possible that CVE-2022-39364 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-39364?: CVE-2022-39364 affects nextcloud security-advisories.

Description

Category

CWE-312 – Cleartext Storage of Sensitive Information

References

Frequently Asked Questions