Product
nextcloud user oidc
9 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-45284
CVE-2026-45278
CVE-2024-52512
CVE-2024-37886
CVE-2024-37312
CVE-2023-39954
CVE-2023-39953
CVE-2023-32074
CVE-2023-28848
>= 1.3.6 and < 8.4.0
Nextcloud is an open source content collaboration platform. From version 1.3.6 to before version 8.4.0, an improper check allowed
>= 6.1.0 and < 8.2.2
Nextcloud is an open source content collaboration platform. From version 6.1.0 to before version 8.2.2, an attacker can craft link
>= 6.0.0 and < 6.1.0
user_oidc app is an OpenID Connect user backend for Nextcloud. A malicious user could send a malformed login link that would redir
< 1.3.5
user_oidc app is an OpenID Connect user backend for Nextcloud. An attacker could potentially trick the app into accepting a reques
< 5.0.0
user_oidc app is an OpenID Connect user backend for Nextcloud. Missing access control on the ID4me endpoint allows an attacker to
>= 1.0.0 and < 1.3.3
user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Starting in version 1.0.0 and prior
>= 1.0.0 and < 1.3.3
user_oidc provides the OIDC connect user backend for Nextcloud, an open-source cloud platform. Starting in version 1.0.0 and prior
< 1.3.2
user_oidc app is an OpenID Connect user backend for Nextcloud. Authentication can be broken/bypassed in user_oidc app. It is recom
>= 1.0.0 and < 1.3.0
user_oidc is the OIDC connect user backend for Nextcloud, an open source collaboration platform. A vulnerability in versions 1.0.0