CVE-2024-37317 | Nextcloud Notes App up to 4.9.2 Personal Note Notes/ access control

Inserito da Angelo Barbosa | Giu 14, 2024 | CVE

A vulnerability classified as critical has been found in Nextcloud Notes App up to 4.9.2. Affected is an unknown function of the file Notes/ of the component Personal Note Handler. The manipulation leads to improper access controls.

This vulnerability is traded as CVE-2024-37317. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37317 | Nextcloud Notes App up to 4.9.2 Personal Note Notes/ access control

Post correlati

CVE-2023-26998 | NetScout nGeniusOne 6.3.4 Alert Configuration Page cross site scripting

CVE-2023-5679 | ISC BIND DNS64 assertion

CVE-2024-1269 | SourceCodester Product Management System 1.0 /supplier.php supplier_name/supplier_contact cross site scripting

CVE-2024-21775 | Zoho ManageEngine Exchange Reporter Plus up to 5714 Report Exporting sql injection