CVE-2020-8156

Summary

A missing verification of the TLS host in Nextcloud Mail 1.1.3 allowed a man in the middle attack.

Affected Software

VendorProductVersion RangeStatus
n/aNextcloud Mail1.1.4affected

Weaknesses

  • CWE-295: Improper Certificate Validation (CWE-295)

ADP Enrichment

CVE Program Container

Additional References

References