CVE-2024-52512

LOW Year: 2024
CVSS v3 Score
3.3
Low
Weakness Type
CWE-601
View all →

Vulnerability Description

user_oidc app is an OpenID Connect user backend for Nextcloud. A malicious user could send a malformed login link that would redirect the user to a provided URL after successfully authenticating. It is recommended that the Nextcloud User OIDC app is upgraded to 6.1.0.

Related Vulnerabilities

CVE-2020-26836

LOW
CVSS:3.4(Low)

SAP Solution Manager (Trace Analysis), version - 720, allows for misuse of a parameter in the application URL leading to Open Redirect vulnerability, an attacker can enter a link to malicious site whi...

CWE-6012020

CVE-2021-27612

LOW
CVSS:3.4(Low)

In specific situations SAP GUI for Windows until and including 7.60 PL9, 7.70 PL0, forwards a user to specific malicious website which could contain malware or might lead to phishing attacks to steal ...

CWE-6012021

CVE-2022-0697

LOW
CVSS:3.4(Low)

Open Redirect in GitHub repository archivy/archivy prior to 1.7.0.

CWE-6012022

CVE-2019-14882

LOW
CVSS:3.1(Low)

A vulnerability was found in Moodle 3.7 to 3.7.3, 3.6 to 3.6.7, 3.5 to 3.5.9 and earlier where an open redirect existed in the Lesson edit page.

CWE-6012019

CVE-2022-44717

LOW
CVSS:3.1(Low)

An issue was discovered in NetScout nGeniusONE 6.3.2 build 904. Open Redirection can occur (issue 1 of 2). After successful login, an attacker must visit the vulnerable parameter and inject a crafted ...

CWE-6012022