CVE-2024-37886 | Nextcloud user_oidc App prior 1.3.5/2.0.0/3.0.0/4.0.0/5.0.0 signature verification (GHSA-vw5h-29xf-g55g)

Posted by Angelo Barbosa | Jun 14, 2024 | CVE

A vulnerability was found in Nextcloud user_oidc App. It has been classified as critical. Affected is an unknown function. The manipulation leads to improper verification of cryptographic signature.

This vulnerability is traded as CVE-2024-37886. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-37886 | Nextcloud user_oidc App prior 1.3.5/2.0.0/3.0.0/4.0.0/5.0.0 signature verification (GHSA-vw5h-29xf-g55g)

Related Posts

CVE-2024-8656 | WPFactory Helper Plugin up to 1.7.0 on WordPress cross site scripting

CVE-2023-48902 | Tramyardg Autoexpress 1.3.0 uploadCarImages.php improper authentication (ID 177661)

CVE-2024-32353 | Totolink X5000R 9.1.0cu.2350_B20230313 /cgi-bin/cstecgi.cgi setSSServer port command injection

Fuji Electric TELLUS/TELLUS Lite File out-of-bounds