CVE-2024-37316

MEDIUM Year: 2024
CVSS v3 Score
4.6
Medium
Weakness Type
CWE-241
View all →

Vulnerability Description

Nextcloud Calendar is a calendar app for Nextcloud. Authenticated users could create an event with manipulated attachment data leading to a bad redirect for participants when clicked. It is recommended that the Nextcloud Calendar App is upgraded to 4.6.8 or 4.7.2.

Related Vulnerabilities

CVE-2021-0243

MEDIUM
CVSS:4.7(Medium)

Improper Handling of Unexpected Data in the firewall policer of Juniper Networks Junos OS on EX4300 switches allows matching traffic to exceed set policer limits, possibly leading to a limited Denial ...

CWE-2412021

CVE-2023-28961

MEDIUM
CVSS:5.3(Medium)

An Improper Handling of Unexpected Data Type vulnerability in IPv6 firewall filter processing of Juniper Networks Junos OS on the ACX Series devices will prevent a firewall filter with the term 'from ...

CWE-2412023

CVE-2024-9423

MEDIUM
CVSS:5.3(Medium)

Certain HP LaserJet printers may potentially experience a denial of service when a user sends a raw JPEG file to the printer. The printer displays a “JPEG Unsupported” message which may not clear, pot...

CWE-2412024

CVE-2022-22193

MEDIUM
CVSS:5.5(Medium)

An Improper Handling of Unexpected Data Type vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a locally authenticated attacker with low privi...

CWE-2412022

CVE-2021-32655

LOW
CVSS:3.5(Low)

Nextcloud Server is a Nextcloud package that handles data storage. In versions prior to 19.0.11, 20.0.10, and 21.0.2, an attacker is able to convert a Files Drop link to a federated share. This causes...

CWE-2412021

CVE-2024-32268

LOW
CVSS:3.3(Low)

An issue in Tuya Smart camera U6N v.3.2.5 allows a remote attacker to cause a denial of service via a crafted packet to the network connection component.

CWE-2412024