{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "last_affected": "sle-15-sp1" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "fixed": "15.0.14" }, { "introduced": "16.0.0" }, { "fixed": "16.0.7" }, { "introduced": "17.0.0" }, { "fixed": "17.0.2" } ] }, "events": [ { "introduced": "0" }, { "fixed": "dd0b38876d11d81776c9e12bdcc31142059a983e" }, { "introduced": "6781f9fc7652f735a75abd869ab3e79878fceec9" }, { "fixed": "afa23942a508c16dc99bf6031d522a4d9539bb3a" }, { "introduced": "c937c8f1753b111086e28afa396f3abd5776b1db" }, { "fixed": "8306acc940c0c8d4c0c3798b742d6ca8be3fcff0" } ], "repo": "https://github.com/nextcloud/server", "type": "GIT" } ] } ], "details": "A bug in Nextcloud Server 17.0.1 causes the workflow rules to depend their behaviour on the file extension when checking file mimetypes.", "id": "CVE-2019-15613", "modified": "2026-03-15T21:45:01.160715610Z", "published": "2020-02-04T20:15:11.870Z", "references": [ { "type": "ADVISORY", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00019.html" }, { "type": "ADVISORY", "url": "http://lists.opensuse.org/opensuse-security-announce/2020-02/msg00022.html" }, { "type": "ADVISORY", "url": "https://nextcloud.com/security/advisory/?id=NC-SA-2020-002" }, { "type": "FIX", "url": "https://hackerone.com/reports/697959" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }