user_oidc app is an OpenID Connect user backend for Nextcloud. An attacker could potentially trick the app into accepting a request that is not signed by the correct server. It is recommended that the Nextcloud user_oidc app is upgraded to 1.3.5, 2.0.0, 3.0.0, 4.0.0 or 5.0.0.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published: 2024-06-14T15:45:12.913Z
Updated: 2024-08-02T03:57:40.025Z
Reserved: 2024-06-10T19:54:41.360Z
Link: CVE-2024-37886
Vulnrichment
Updated: 2024-06-15T20:26:23.078Z
NVD
Status : Awaiting Analysis
Published: 2024-06-14T16:15:13.800
Modified: 2024-11-21T09:24:28.280
Link: CVE-2024-37886
Redhat
No data.