CVE-2021-32653 - log back

CVE-2021-32653 edited at 01 Jun 2021 20:10:51
References
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-396j-vqpr-qg45
+ https://hackerone.com/reports/1173436
CVE-2021-32653 edited at 01 Jun 2021 19:59:02
Severity
- Unknown
+ Low
Remote
- Unknown
+ Remote
Type
- Unknown
+ Information disclosure
Description
+ Nextcloud Server before version 21.0.2 sends user IDs to the lookup server even if the user has no fields set to be published.
References
+ https://github.com/nextcloud/security-advisories/security/advisories/GHSA-396j-vqpr-qg45
Notes
CVE-2021-32653 created at 01 Jun 2021 19:56:59