CVE-2024-37886 | Nextcloud user_oidc App prior 1.3.5/2.0.0/3.0.0/4.0.0/5.0.0 signature verification (GHSA-vw5h-29xf-g55g)

Inserito da Angelo Barbosa | Giu 14, 2024 | CVE

A vulnerability was found in Nextcloud user_oidc App. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper verification of cryptographic signature.

This vulnerability is traded as CVE-2024-37886. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37886 | Nextcloud user_oidc App prior 1.3.5/2.0.0/3.0.0/4.0.0/5.0.0 signature verification (GHSA-vw5h-29xf-g55g)

Post correlati

CVE-2023-52484 | Linux Kernel up to 5.15.133/6.1.55/6.5.5 on CPU arm-smmu-v3 arm_smmu_mm_arch_invalidate_secondary_tlbs denial of service

CVE-2024-1968 | scrapy up to 2.11.1 information disclosure

CVE-2024-9797 | code-projects Blood Bank System 1.0 register.php user sql injection

CVE-2024-25619 | Mastodon up to 3.5.17/4.0.13/4.1.13/4.2.5 OAuth Application operation after expiration (GHSA-7w3c-p9j8-mq3x)