CVE-2024-37886 | Nextcloud user_oidc App prior 1.3.5/2.0.0/3.0.0/4.0.0/5.0.0 signature verification (GHSA-vw5h-29xf-g55g)

Inserito da Angelo Barbosa | Giu 14, 2024 | CVE

A vulnerability was found in Nextcloud user_oidc App. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper verification of cryptographic signature.

This vulnerability is traded as CVE-2024-37886. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37886 | Nextcloud user_oidc App prior 1.3.5/2.0.0/3.0.0/4.0.0/5.0.0 signature verification (GHSA-vw5h-29xf-g55g)

Post correlati

CVE-2024-29119 | Siemens Spectrum Power 7 V23Q3/V23Q4 privileges assignment (ssa-616032)

CVE-2024-4148 | lunary-ai lunary 1.2.10 redos

CVE-2022-36418 | Vagary Digital HREFLANG Tags Lite Plugin up to 2.0.0 on WordPress authorization

CVE-2024-36475 | Century Systems FutureNet WXR-250 firmware version 7.4.9/earlier Debug os command injection