CVE-2024-22403 | NextCloud Server up to 27.x OAuth2 violation of secure design principles (GHSA-wppc-f5g8-vx36)

Inserito da Angelo Barbosa | Gen 18, 2024 | CVE

A vulnerability was found in NextCloud Server up to 27.x. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component OAuth2. The manipulation leads to violation of secure design principles.

This vulnerability is known as CVE-2024-22403. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-22403 | NextCloud Server up to 27.x OAuth2 violation of secure design principles (GHSA-wppc-f5g8-vx36)

Post correlati

CVE-2024-22136 | DroitThemes Droit Elementor Addons Plugin up to 3.1.5 on WordPress cross-site request forgery

CVE-2023-32366 | Apple macOS Font File out-of-bounds write

CVE-2024-34274 | OpenBD 20210306203917-6cbe797 Cookie bdglobals/bdclient_spot deserialization (Issue 89)

CVE-2024-32694 | Creative Interactive Media 3D FlipBook, PDF Viewer, PDF Embedder Plugin up to 3.62 on WordPress cross site scripting