Session Handling Vulnerability in Nextcloud Server by Nextcloud
CVE-2025-47790

6.4MEDIUM

Key Information:

Vendor

Nextcloud
Status
Security-advisories
Vendor
CVE Published:
16 May 2025

What is CVE-2025-47790?

Nextcloud Server and Nextcloud Enterprise Server are affected by a session handling flaw that allows for bypassing the second factor of authentication under specific configuration conditions. When the remember_login_cookie_lifetime is set to 0, users may inadvertently skip the second factor confirmation after a successful username and password login if the session expires, and the selection page is reloaded. To mitigate this vulnerability, it is recommended to update to the latest patched versions and adjust the remember_login_cookie_lifetime setting in config.php to prevent old sessions from being exploited.

Affected Version(s)

security-advisories >= 26.0.0, < 26.0.13.15 < 26.0.0, 26.0.13.15

security-advisories >= 27.0.0, < 27.1.11.15 < 27.0.0, 27.1.11.15

security-advisories >= 28.0.0, < 28.0.14.6 < 28.0.0, 28.0.14.6

References

https://github.com/nextcloud/security-advisories/security...
x_refsource_CONFIRM
https://github.com/nextcloud/server/pull/51905
x_refsource_MISC
https://hackerone.com/reports/2729367
x_refsource_MISC

CVSS V3.1

Score:
6.4
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.