Lucene search

CVE-2024-37312 Nextcloud user_oidc app's ID4me feature is available even when disabled

🗓️ 14 Jun 2024 14:24:43Reported by GitHub_MType

CVE-2024-37312 Nextcloud user_oidc app's ID4me feature security vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
Vulnrichment	CVE-2024-37312 Nextcloud user_oidc app's ID4me feature is available even when disabled	14 Jun 202414:43	–	vulnrichment
CNVD	Nextcloud Access Control Error Vulnerability (CNVD-2024-29657)	21 Jun 202400:00	–	cnvd
Nextcloud	ID4me feature of OpenID connect app available even when disabled	14 Jun 202414:25	–	nextcloud
NVD	CVE-2024-37312	14 Jun 202415:15	–	nvd
Hacker One	Nextcloud: ID4me feature of OpenID connect app available even when disabled	17 Feb 202402:39	–	hackerone
CVE	CVE-2024-37312	14 Jun 202415:15	–	cve
OSV	CVE-2024-37312	14 Jun 202415:15	–	osv

[
  {
    "vendor": "nextcloud",
    "product": "security-advisories",
    "versions": [
      {
        "version": "<= 1.3.6",
        "status": "affected"
      }
    ]
  }
]

Source	Link
hackerone	www.hackerone.com/reports/2376929
github	www.github.com/nextcloud/security-advisories/security/advisories/GHSA-vw7g-959g-vj6q
github	www.github.com/nextcloud/user_oidc/commit/9f68a716ecd264160a7c098b8840313f1ac855f2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 Jun 2024 14:43Current

CVSS36.3

EPSS0.00062

CWE-284