Alerts This Week
Warning Icon 1 548
Alerts This Week
Warning Icon 1 548

Fedora 43 Nextcloud 33.0.5 Major Security Advisory on Authentication Bypass

fedora
Calendar Grey June 17, 2026
Dist Fedora Esm H88
Nextcloud 33.0.5 Release for Fedora includes important security fixes addressing authentication bypass and unauthorized access.
33.0.5 Release

Summary

NextCloud gives you universal access to your files through a web interface or

WebDAV. It also provides a platform to easily view & sync your contacts,

calendars and bookmarks across all your devices and enables basic editing right

on the web. NextCloud is extendable via a simple but powerful API for

applications and plugins.

Update Information:

33.0.5 Release

Topics%20covered

Topics Covered

security advisory unauthorized access fedora important authentication bypass deny service

Change Log

* Mon Jun 8 2026 Andrew Bauer - 33.0.5-1 - 33.0.5 Release

References


[ 1 ] Bug #2483840 - CVE-2026-45690 nextcloud: Nextcloud Server: Authentication bypass allows unauthorized access by circumventing two-factor authentication. [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2483840 [ 2 ] Bug #2483841 - CVE-2026-45690 nextcloud: Nextcloud Server: Authentication bypass allows unauthorized access by circumventing two-factor authentication. [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2483841 [ 3 ] Bug #2483842 - CVE-2026-45810 nextcloud: Nextcloud Server: Information disclosure via missing relation check in file comments [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=2483842 [ 4 ] Bug #2483843 - CVE-2026-45285 nextcloud: Nextcloud: Unauthorized data access and modification via unlisted public links [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2483843 [ 5 ] Bug #2483844 - CVE-2026-45691 nextcloud: Nextcloud Server: Two-factor authentication bypass via session cookie ...

Read the Full Advisory

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-cb3feafe41' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

Severity
important
Lowest
Low
Medium
High
Critical

Name: nextcloud
Product: Fedora 43
Version: 33.0.5
Release: 1.fc43
URL: http://nextcloud.com
Summary: Private file sync and share server

Topics%20covered

Topics Covered

security advisory unauthorized access fedora important authentication bypass deny service

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here