CVE-2024-22400

Nextcloud User Saml is an app for authenticating Nextcloud users using SAML. In affected versions users can be given a link to the Nextcloud server and end up on a uncontrolled thirdparty server. It is recommended that the User Saml app is upgraded to version 5.1.5, 5.2.5, or 6.0.1. There are no known workarounds for this issue.
Open Redirect
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
3.1 LOW
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
GitHub_MCNA
3.1 LOW
NETWORK
HIGH
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
nextcloudsso_\&_saml_authentication
5.0.0 ≤
𝑥
< 5.1.5
nextcloudsso_\&_saml_authentication
5.2.0 ≤
𝑥
< 5.2.5
nextcloudsso_\&_saml_authentication
6.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-622q-xhfr-xmv7
https://github.com/nextcloud/user_saml/commit/b184304a476deeba36e92b70562d5de7c2f85f8a
https://github.com/nextcloud/user_saml/pull/788
https://hackerone.com/reports/2263044
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-622q-xhfr-xmv7
https://github.com/nextcloud/user_saml/commit/b184304a476deeba36e92b70562d5de7c2f85f8a
https://github.com/nextcloud/user_saml/pull/788
https://hackerone.com/reports/2263044