CVE-2024-52512 – Nextcloud User OIDC OpenID Connect Redirect Vulnerability

CVE ID : CVE-2024-52512

Published : Nov. 15, 2024, 6:15 p.m. | 1 hour ago

Description : user_oidc app is an OpenID Connect user backend for Nextcloud. A malicious user could send a malformed login link that would redirect the user to a provided URL after successfully authenticating. It is recommended that the Nextcloud User OIDC app is upgraded to 6.1.0.

Severity: 3.3 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-52512 – Nextcloud User OIDC OpenID Connect Redirect Vulnerability