Oval Definition:	oval:org.opensuse.security:def:202132800
Revision Date: 2022-05-25 Version: 1 Title: CVE-2021-32800 Description: Nextcloud server is an open source, self hosted personal cloud. In affected versions an attacker is able to bypass Two Factor Authentication in Nextcloud. Thus knowledge of a password, or access to a WebAuthN trusted device of a user was sufficient to gain access to an account. It is recommended that the Nextcloud Server is upgraded to 20.0.12, 21.0.4 or 22.1.0. There are no workaround for this vulnerability. Family: unix Class: vulnerability Status: Reference(s): Mitre CVE-2021-32800 SUSE CVE-2021-32800 openSUSE-SU-2021:1250-1 openSUSE-SU-2021:1252-1 openSUSE-SU-2021:1253-1 openSUSE-SU-2021:1255-1 openSUSE-SU-2021:1275-1 Platform(s): openSUSE Leap 15.2 openSUSE Leap 15.3 SUSE Linux Enterprise High Performance Computing 12 SUSE Linux Enterprise High Performance Computing 15 SP1 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server 15 SP1 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP1 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Storage 6 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.0 SUSE Manager Proxy 4.1 SUSE Manager Proxy 4.2 SUSE Manager Server 4.0 SUSE Manager Server 4.1 SUSE Manager Server 4.2 SUSE Package Hub for SUSE Linux Enterprise 12 SUSE Package Hub for SUSE Linux Enterprise 15 SP1 SUSE Package Hub for SUSE Linux Enterprise 15 SP2 SUSE Package Hub for SUSE Linux Enterprise 15 SP3 Product(s): Definition Synopsis openSUSE Leap 15.2 is installed AND Package Information nextcloud-20.0.12-lp152.3.12.1 is installed AND nextcloud is signed with openSUSE key OR nextcloud-apache-20.0.12-lp152.3.12.1 is installed AND nextcloud-apache is signed with openSUSE key Definition Synopsis openSUSE Leap 15.3 is installed AND Package Information nextcloud-20.0.12-bp153.2.6.1 is installed AND nextcloud is signed with openSUSE key OR nextcloud-apache-20.0.12-bp153.2.6.1 is installed AND nextcloud-apache is signed with openSUSE key Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed AND Package Information nextcloud-20.0.12-bp151.3.18.1 is installed OR nextcloud-apache-20.0.12-bp151.3.18.1 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed AND Package Information nextcloud-20.0.12-bp152.2.12.1 is installed OR nextcloud-apache-20.0.12-bp152.2.12.1 is installed Definition Synopsis SUSE Package Hub for SUSE Linux Enterprise 12 is installed AND Package Information nextcloud-20.0.12-31.1 is installed OR nextcloud-apache-20.0.12-31.1 is installed Definition Synopsis Release Information SUSE Package Hub for SUSE Linux Enterprise 15 SP1 is installed AND nextcloud-20.0.12-bp151.3.18.1 is installed OR nextcloud-apache-20.0.12-bp151.3.18.1 is installed OR Package Information SUSE Package Hub for SUSE Linux Enterprise 15 SP3 is installed AND nextcloud-20.0.12-bp153.2.6.1 is installed OR nextcloud-apache-20.0.12-bp153.2.6.1 is installed OR Package Information SUSE Package Hub for SUSE Linux Enterprise 15 SP2 is installed AND nextcloud-20.0.12-bp152.2.12.1 is installed OR nextcloud-apache-20.0.12-bp152.2.12.1 is installed
BACK