CVE-2019-5453

Summary

Bypass lock protection in the Nextcloud Android app prior to version 3.3.0 allowed access to files when being prompted for the lock protection and switching to the Nextcloud file provider.

Affected Software

VendorProductVersion RangeStatus
Nextcloudcom.nextcloud.client3.3.0affected

Weaknesses

  • CWE-288: Authentication Bypass Using an Alternate Path or Channel (CWE-288)

ADP Enrichment

CVE Program Container

Additional References

References