CVE-2023-25816 nextcloud vulnerable to Uncontrolled Resource Consumption

Nextcloud is an Open Source private cloud software. Versions 25.0.0 and above, prior to 25.0.3, are subject to Uncontrolled Resource Consumption. A user can configure a very long password, consuming more resources on password validation than desired. This issue is patched in 25.0.3 No workaround ...

CVE-2023-25816

CVE-2023-25816 – Nextcloud resource consumption : The issue affects Nextcloud Server 25.0.0 through versions before 25.0.3, where an extremely long password can cause uncontrolled resource usage during validation. This vulnerability is addressed by upgrading to 25.0.3, as stated in the advisory a...

CVE-2022-25816

creationtimestamp| type| source ---|---|--- 2022-03-10 20:26:07+00:00| seen| https://t.me/cibsecurity/38719...

CVE-2022-25816

CVE-2022-25816 affects Samsung Lock and Mask apps setting prior to the SMR Mar-2022 Release 1, where improper authentication allows an attacker to change enable/disable without authentication. The initial entry documents this vulnerability and notes Samsung and Red Hat/other vendor advisories ali...

Security Bulletin: A security vulnerability in Vault affects Bastion Service of IBM Cloud Pak for Multicloud Management

Summary A security vulnerability in Vault affects Bastion Service of IBM Cloud Pak for Multicloud Managemen 2.2.0 and previous version Vulnerability Details CVEID: CVE-2020-25816 DESCRIPTION: HashiCorp Vault and Vault Enterprise could allow a remote attacker to bypass security restrictions, cause...

CVE-2020-25816

creationtimestamp| type| source ---|---|--- 2020-10-01 00:52:20+00:00| seen| https://t.me/cibsecurity/14973...

CVE-2020-25816

CVE-2020-25816 affects HashiCorp Vault and Vault Enterprise (1.0 and later). Root cause: batch token leases were not scheduled to expire, letting leases outlive their TTL. Consequence: batch token leases could persist beyond intended TTL, undermining expiration controls. Fixed in Vault 1.4.7 and ...