Lucene search
MikaelgundersenH1:1784162HistoryNov 25, 2022 - 11:50 a.m.
Nextcloud: OAuth2 "authorization_code" is valid indefinetly
2022-11-2511:50:10
mikaelgundersen
hackerone.com
$100
11
nextcloud
oauth2
security best practices
authorization_code
rfc 6749
impact
attacker
bugbounty
Your OAuth2 endpoint is not at all following best practices. When the authorization_code is generated it is stored without a timeout. Now according to https://www.rfc-editor.org/rfc/rfc6749#section-4.1.2 10 minutes is recommended. As the goal is that is gets used almost directly or not at all.
Now there is a debate maybe to have on the 10 minutes. But there is kind of a big difference between 10 minutes and no timeout at all.
Impact
An attacker that obtains this code could possibly easily redeem it in the future.
Or an attacker could just keep trying codes.
Related
osv
osv
CVE-2024-22403
2024-01-18 20:15:08
nextcloud
nextcloud
OAuth2 authorization codes are valid indefinetly
2024-01-18 08:39:31
cve
cve
CVE-2024-22403
2024-01-18 20:15:08
prion
prion
Authorization
2024-01-18 20:15:00
nvd
nvd
CVE-2024-22403
2024-01-18 20:15:08
cvelist
cvelist
nessus
nessus
Fedora 38 : nextcloud (2024-d67f9827b2)
2024-05-01 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: nextcloud-28.0.4-2.fc38
2024-05-01 01:38:23
openvas
openvas
Nextcloud Server < 28.0.0 Improper Authorization Vulnerability (GHSA-wppc-f5g8-vx36)
2024-01-18 00:00:00
Fedora: Security Advisory for nextcloud (FEDORA-2024-d67f9827b2)
2024-05-27 00:00:00
redos
redos
ROS-20240627-06
2024-06-27 00:00:00