 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| CVE ID: | CVE-2022-41968 |
| Description: | Nextcloud Server is an open source personal cloud server. Prior to versions 23.0.10 and 24.0.5, calendar name lengths are not validated before writing to a database. As a result, an attacker can send unnecessary amounts of data against the database. Version 23.0.10 and 24.0.5 contain patches for the issue. No known workarounds are available. |
| Test IDs: | 1.3.6.1.4.1.25623.1.0.124222 |
| Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2022-41968 https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m92j-xxc8-hq3v https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m92j-xxc8-hq3v https://github.com/nextcloud/server/pull/33139 https://github.com/nextcloud/server/pull/33139 https://hackerone.com/reports/1596148 https://hackerone.com/reports/1596148 |