CVE-2026-45157 | Nextcloud Server up to 32.0.8/33.0.2 access control (GHSA-45pj-p7x7-4mhc)

June 1, 2026 Yanac

A vulnerability labeled as critical has been found in Nextcloud Server up to 32.0.8/33.0.2. The affected element is an unknown function. The manipulation results in improper access controls.

This vulnerability is reported as CVE-2026-45157. The attack can be launched remotely. No exploit exists.

The affected component should be upgraded.VulDB Recent EntriesRead More

CVE-2026-45159 | Nextcloud End-to-End Encryption up to 1.15.3/1.16.2/1.17.0/1.18.0 authorization (GHSA-p3qw-7gwx-wg24)
CVE-2026-45156 | Nextcloud User OIDC up to 3.0.x/5.0.x/6.3.x ID4me improper authentication (GHSA-qqgv-fqwp-mjpp)