15 matches found
EUVD-2020-29079
Malware in sbrugna...
CVE-2020-8228
A missing rate limit in the Preferred Providers app 1.7.0 allowed an attacker to set the password an uncontrolled amount of times...
CVE-2020-8202
Improper check of inputs in Nextcloud Preferred Providers app v1.6.0 allowed to perform a denial of service attack when using a very long password...
SUSE CVE-2020-8228
A missing rate limit in the Preferred Providers app 1.7.0 allowed an attacker to set the password an uncontrolled amount of times...
CVE-2020-8228
A missing rate limit in the Preferred Providers app 1.7.0 allowed an attacker to set the password an uncontrolled amount of times...
CVE-2020-8228
A missing rate limit in the Preferred Providers app 1.7.0 allowed an attacker to set the password an uncontrolled amount of times...
Design/Logic Flaw
A missing rate limit in the Preferred Providers app 1.7.0 allowed an attacker to set the password an uncontrolled amount of times...
CVE-2020-8228
CVE-2020-8228 describes a missing rate limit on the signup page in the Nextcloud Preferred Providers app (version 1.7.0), allowing an attacker to repeatedly set the password. The OpenSUSE security advisory (NC-SA-2020-033) and related OSS notes confirm this CVE and indicate it was addressed in th...
CVE-2020-8228
A missing rate limit in the Preferred Providers app 1.7.0 allowed an attacker to set the password an uncontrolled amount of times...
Nextcloud Preferred Providers app denial of service vulnerability
Nextcloud Preferred Providers app is an application for logging into Nextcloud by Nextcloud Germany. A security vulnerability exists in the Nextcloud Preferred Providers app prior to version 1.7.0 that stems from the program failing to properly validate user input. An attacker could exploit the...
Missing rate limit on signup page (NC-SA-2020-033)
A missing rate limit in the Preferred Providers app 1.7.0 allowed an attacker to set the password an uncontrolled amount of times...
CVE-2020-8202
Improper check of inputs in Nextcloud Preferred Providers app v1.6.0 allowed to perform a denial of service attack when using a very long password...
Input validation
Improper check of inputs in Nextcloud Preferred Providers app v1.6.0 allowed to perform a denial of service attack when using a very long password...
CVE-2020-8202
CVE-2020-8202 affects the Nextcloud Preferred Providers app (v1.6.0) due to improper input validation, allowing a denial-of-service when a very long password is entered. Root cause: input validation failure in the app. Impact: server DoS and potential unavailability. Mitigation: upgrade to 1.7.0 ...
Possible denial of service when entering a long password (NC-SA-2020-028)
Improper check of inputs in Preferred providers app 1.6.0 allowed to perform a denial of service attack when using a very long password...