Skip to main content

User Oidc

7 CVEs product

Monthly

CVE-2024-52512 MEDIUM PATCH This Month

user_oidc app is an OpenID Connect user backend for Nextcloud. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Nextcloud Open Redirect User Oidc
NVD GitHub
CVSS 3.1
6.1
EPSS
0.4%
CVE-2024-37886 MEDIUM PATCH This Month

user_oidc app is an OpenID Connect user backend for Nextcloud. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Jwt Attack Nextcloud Information Disclosure User Oidc
NVD GitHub
CVSS 3.1
4.7
EPSS
0.2%
CVE-2024-37312 MEDIUM POC PATCH This Month

user_oidc app is an OpenID Connect user backend for Nextcloud. Rated medium severity (CVSS 6.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Nextcloud User Oidc
NVD GitHub
CVSS 3.1
6.3
EPSS
0.6%
CVE-2023-39954 HIGH PATCH This Week

user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Nextcloud User Oidc
NVD GitHub
CVSS 3.1
8.1
EPSS
0.4%
CVE-2023-39953 MEDIUM PATCH This Month

user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Nextcloud User Oidc
NVD GitHub
CVSS 3.1
4.8
EPSS
0.4%
CVE-2023-32074 CRITICAL PATCH Act Now

user_oidc app is an OpenID Connect user backend for Nextcloud. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Nextcloud User Oidc
NVD GitHub
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-28848 MEDIUM PATCH This Month

user_oidc is the OIDC connect user backend for Nextcloud, an open source collaboration platform. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Request Forgery (CSRF) vulnerability could allow attackers to trick authenticated users into performing unintended actions.

CSRF Nextcloud User Oidc
NVD GitHub
CVSS 3.1
5.4
EPSS
0.3%
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

user_oidc app is an OpenID Connect user backend for Nextcloud. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Open Redirect vulnerability could allow attackers to redirect users to malicious websites via URL manipulation.

Nextcloud Open Redirect User Oidc
NVD GitHub
EPSS 0% CVSS 4.7
MEDIUM PATCH This Month

user_oidc app is an OpenID Connect user backend for Nextcloud. Rated medium severity (CVSS 4.7), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Jwt Attack Nextcloud Information Disclosure +1
NVD GitHub
EPSS 1% CVSS 6.3
MEDIUM POC PATCH This Month

user_oidc app is an OpenID Connect user backend for Nextcloud. Rated medium severity (CVSS 6.3), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass Nextcloud User Oidc
NVD GitHub
EPSS 0% CVSS 8.1
HIGH PATCH This Week

user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Nextcloud User Oidc
NVD GitHub
EPSS 0% CVSS 4.8
MEDIUM PATCH This Month

user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, no authentication required.

Information Disclosure Nextcloud User Oidc
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL PATCH Act Now

user_oidc app is an OpenID Connect user backend for Nextcloud. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Authentication Bypass Nextcloud User Oidc
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM PATCH This Month

user_oidc is the OIDC connect user backend for Nextcloud, an open source collaboration platform. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Request Forgery (CSRF) vulnerability could allow attackers to trick authenticated users into performing unintended actions.

CSRF Nextcloud User Oidc
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy