user_oidc app is an OpenID Connect user backend for Nextcloud. An attacker could potentially trick the app into accepting a request that is not signed by the correct server. It is recommended that the Nextcloud user_oidc app is upgraded to 1.3.5, 2.0.0, 3.0.0, 4.0.0 or 5.0.0.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-06-14T15:45:12.913Z

Updated: 2024-08-02T03:57:40.025Z

Reserved: 2024-06-10T19:54:41.360Z

Link: CVE-2024-37886

cve-icon Vulnrichment

Updated: 2024-06-15T20:26:23.078Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-06-14T16:15:13.800

Modified: 2024-11-21T09:24:28.280

Link: CVE-2024-37886

cve-icon Redhat

No data.