CVE-2026-45279: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in nextcloud security-advisories
Nextcloud Server versions 31. 0. 0 to before 31. 0. 14 and 32. 0. 0 to before 32. 0. 4 contain a path traversal vulnerability related to the use of {lang} in the template directory configuration. This flaw allows non-admin users, under certain conditions and depending on Unix file permissions, to copy arbitrary files into their own Nextcloud directory.
AI Analysis
Technical Summary
CVE-2026-45279 is a path traversal vulnerability in Nextcloud Server affecting versions 31.0.0 up to but not including 31.0.14, and 32.0.0 up to but not including 32.0.4. The issue arises when the {lang} variable is used in the template directory configuration, enabling non-administrative users to copy arbitrary files into their own Nextcloud directory, contingent on Unix file permissions. This vulnerability is identified as CWE-22 and carries a CVSS 3.1 base score of 4.4, indicating medium severity. The vendor recommends upgrading to Nextcloud Server versions 31.0.14 or 32.0.4, or corresponding Enterprise Server versions, to remediate the vulnerability.
Potential Impact
The vulnerability allows non-admin users to copy arbitrary files into their own Nextcloud directory via a path traversal attack, which could lead to unauthorized file access or manipulation within the scope of the affected user's permissions. The impact is limited by Unix file permissions and does not directly affect confidentiality, integrity, or availability beyond the affected user's scope. There are no known exploits in the wild reported at this time.
Mitigation Recommendations
Upgrading Nextcloud Server to version 31.0.14 or 32.0.4, or the specified Enterprise Server versions (32.0.4, 31.0.14, 30.0.17.7, 29.0.17.12, 28.0.14.15) is recommended to remediate this vulnerability. Patch status is not explicitly confirmed in the advisory, but the vendor's upgrade recommendations indicate that these versions contain the fix. Users should follow official Nextcloud upgrade procedures to apply these updates.
CVE-2026-45279: CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in nextcloud security-advisories
Description
Nextcloud Server versions 31. 0. 0 to before 31. 0. 14 and 32. 0. 0 to before 32. 0. 4 contain a path traversal vulnerability related to the use of {lang} in the template directory configuration. This flaw allows non-admin users, under certain conditions and depending on Unix file permissions, to copy arbitrary files into their own Nextcloud directory.
CVSS v3.1
Score 4.4medium
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-45279 is a path traversal vulnerability in Nextcloud Server affecting versions 31.0.0 up to but not including 31.0.14, and 32.0.0 up to but not including 32.0.4. The issue arises when the {lang} variable is used in the template directory configuration, enabling non-administrative users to copy arbitrary files into their own Nextcloud directory, contingent on Unix file permissions. This vulnerability is identified as CWE-22 and carries a CVSS 3.1 base score of 4.4, indicating medium severity. The vendor recommends upgrading to Nextcloud Server versions 31.0.14 or 32.0.4, or corresponding Enterprise Server versions, to remediate the vulnerability.
Potential Impact
The vulnerability allows non-admin users to copy arbitrary files into their own Nextcloud directory via a path traversal attack, which could lead to unauthorized file access or manipulation within the scope of the affected user's permissions. The impact is limited by Unix file permissions and does not directly affect confidentiality, integrity, or availability beyond the affected user's scope. There are no known exploits in the wild reported at this time.
Mitigation Recommendations
Upgrading Nextcloud Server to version 31.0.14 or 32.0.4, or the specified Enterprise Server versions (32.0.4, 31.0.14, 30.0.17.7, 29.0.17.12, 28.0.14.15) is recommended to remediate this vulnerability. Patch status is not explicitly confirmed in the advisory, but the vendor's upgrade recommendations indicate that these versions contain the fix. Users should follow official Nextcloud upgrade procedures to apply these updates.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-11T18:41:13.157Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a1de306e29bf47b503a556c
Added to database: 6/1/2026, 7:52:38 PM
Last enriched: 6/1/2026, 8:05:24 PM
Last updated: 6/2/2026, 4:58:12 AM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.