---

CVE-2021-32653 - log back

CVE-2021-32653 edited at 01 Jun 2021 20:10:51
References	https://github.com/nextcloud/security-advisories/security/advisories/GHSA-396j-vqpr-qg45 + https://hackerone.com/reports/1173436

CVE-2021-32653 edited at 01 Jun 2021 19:59:02
Severity	- Unknown + Low
Remote	- Unknown + Remote
Type	- Unknown + Information disclosure
Description	+ Nextcloud Server before version 21.0.2 sends user IDs to the lookup server even if the user has no fields set to be published.
References	+ https://github.com/nextcloud/security-advisories/security/advisories/GHSA-396j-vqpr-qg45
Notes

CVE-2021-32653 created at 01 Jun 2021 19:56:59