Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
hackeroneMichag86H1:1688199
HistoryAug 31, 2022 - 9:12 p.m.

Nextcloud: Database resource exhaustion for logged-in users via sharee recommendations with circles

2022-08-3121:12:53
michag86
hackerone.com
$250
10
nextcloud
database load
circles
share recommendations
cpu load
bug bounty

EPSS

0.001

Percentile

39.7%

JSON

Summary:

Registered users can generate massive database load

Steps To Reproduce:

  1. create 9 circles and 6 folders (circles * folder > 50)
  2. share all created folders with all created circles
  3. open an other folder and open the share tab, so the URI /ocs/v2.php/apps/files_sharing/api/v1/sharees_recommended is requested
  4. this requests results in a loop that runs as long as the php value max_execution_time is set; the recommended value for this is 3600 seconds (1h)
  5. a small number of these requests will stress even large servers

Tested with Nextcloud 23.0.8

Impact

Attacker slow down the system by generating a lot of database/cpu load.

Related

prion 1
cvelist 1
osv 1
openvas 1
cve 1
nextcloud 1
nvd 1
prion
prion
Code injection
2022-10-27 14:15:00
cvelist
cvelist
CVE-2022-39330 Database resource exhaustion for logged-in users via sharee recommendations with circles
2022-10-27 00:00:00
osv
osv
CVE-2022-39330
2022-10-27 14:15:12
openvas
openvas
Nextcloud Server < 23.0.10, < 24.0.6 Uncontrolled Resource Consumption Vulnerability (GHSA-wxx7-w5p4-7x4c)
2022-10-28 00:00:00
cve
cve
CVE-2022-39330
2022-10-27 14:15:12
nextcloud
nextcloud
Database resource exhaustion for logged-in users via sharee recommendations with circles
2022-10-27 06:51:27
nvd
nvd
CVE-2022-39330
2022-10-27 14:15:12

EPSS

0.001

Percentile

39.7%

JSON
Related for H1:1688199
prion1cvelist1osv1openvas1cve1nextcloud1nvd1