Devolutions Server before 2021.1.18, and LTS before 2020.3.20, allows attackers to intercept private keys via a man-in-the-middle attack against the connections/partial endpoint (which accepts. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.
Information Disclosure
Devolutions Server
NVD
CVSS 3.1
3.7
EPSS
0.5%
Nextcloud Server is a Nextcloud package that handles data storage. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity.
Nextcloud
Information Disclosure
Nextcloud Server
Fedora
NVD
GitHub
CVSS 3.1
3.3
EPSS
0.4%