CVE-2022-35931 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2022-35931 Interim 1 6 2025-02-16T02:58:22Z current 2022-09-07T23:31:59Z 2025-02-16T02:58:22Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2022-35931 Nextcloud Password Policy is an app that enables a Nextcloud server admin to define certain rules for passwords. Prior to versions 22.2.10, 23.0.7, and 24.0.3 the random password generator may, in very rare cases, generate common passwords that the validator itself would block. Upgrade Nextcloud Server to 22.2.10, 23.0.7 or 24.0.3 to receive a patch for the issue in Password Policy. There are no known workarounds available. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/M7E2FX5KGET4IYNWVYBLR7XYJMJ7SJD4/ E-Mail link for openSUSE-SU-2023:0083-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Package Hub 15 SP4 openSUSE Leap 15.4 nextcloud-23.0.12-bp154.2.3.1 nextcloud-apache-23.0.12-bp154.2.3.1 nextcloud-23.0.12-bp154.2.3.1 as a component of SUSE Package Hub 15 SP4 nextcloud-apache-23.0.12-bp154.2.3.1 as a component of SUSE Package Hub 15 SP4 nextcloud-23.0.12-bp154.2.3.1 as a component of openSUSE Leap 15.4 nextcloud-apache-23.0.12-bp154.2.3.1 as a component of openSUSE Leap 15.4 Nextcloud Password Policy is an app that enables a Nextcloud server admin to define certain rules for passwords. Prior to versions 22.2.10, 23.0.7, and 24.0.3 the random password generator may, in very rare cases, generate common passwords that the validator itself would block. Upgrade Nextcloud Server to 22.2.10, 23.0.7 or 24.0.3 to receive a patch for the issue in Password Policy. There are no known workarounds available. CVE-2022-35931 SUSE Package Hub 15 SP4:nextcloud-23.0.12-bp154.2.3.1 SUSE Package Hub 15 SP4:nextcloud-apache-23.0.12-bp154.2.3.1 openSUSE Leap 15.4:nextcloud-23.0.12-bp154.2.3.1 openSUSE Leap 15.4:nextcloud-apache-23.0.12-bp154.2.3.1 low 2.7 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N