CVSS 3.1 Score 4.2 of 10 (medium)


Published Nov 21, 2023
Updated: Nov 30, 2023
CWE ID 312


CVE-2023-48305 is a vulnerability found in Nextcloud Server, an open source cloud platform. In versions prior to 25.0.11, 26.0.6, and 27.1.0, when the log level was set to debug, the user_ldap app would log user passwords in plaintext into the log file. If the log file was then leaked or shared, it could result in the exposure of users' passwords. To remediate this issue, Nextcloud Server and Nextcloud Enterprise Server versions 25.0.11, 26.0.6, and 27.1.0 have been patched with a fix. As a temporary workaround, changing the configuration setting loglevel to 1 or higher (recommended to be higher than 1 in production environments) can mitigate the risk of password exposure.

The potential danger of this vulnerability to an organization is that if an attacker gains access to the log file containing plaintext passwords, they can compromise user accounts and potentially gain unauthorized access to sensitive data stored on Nextcloud Server. This can lead to data breaches, financial losses, reputational damage, and legal consequences for the affected organization.

Source: CVE-2023-48305 (

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-48305 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options