Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2024-52521

Опубликовано: 15 нояб. 2024
Источник: debian

Описание

Nextcloud Server is a self hosted personal cloud system. MD5 hashes were used to check background jobs for their uniqueness. This increased the chances of a background job with arguments falsely being identified as already existing and not be queued for execution. By changing the Hash to SHA256 the probability was heavily decreased. It is recommended that the Nextcloud Server is upgraded to 28.0.10, 29.0.7 or 30.0.0.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
nextcloud-serveritppackage

Связанные уязвимости

nvd логотип

CVE-2024-52521

CVSS3: 2.6
nvd
около 1 года назад

Nextcloud Server is a self hosted personal cloud system. MD5 hashes were used to check background jobs for their uniqueness. This increased the chances of a background job with arguments falsely being identified as already existing and not be queued for execution. By changing the Hash to SHA256 the probability was heavily decreased. It is recommended that the Nextcloud Server is upgraded to 28.0.10, 29.0.7 or 30.0.0.

fstec логотип

BDU:2024-10853

CVSS3: 2.6
fstec
больше 1 года назад

Уязвимость облачного программного обеспечения для создания и использования хранилища данных Nextcloud Server и Nextcloud Enterprise Server, связанная с использованием обратимой односторонней хэш-функции, позволяющая нарушителю сделать фоновое задание актуальным

redos логотип

ROS-20241203-08

CVSS3: 5.7
redos
около 1 года назад

Множественные уязвимости nextcloud