CVE-2026-45278 in user_oidcinfo

Zusammenfassung

von MITRE • 01.06.2026

Nextcloud is an open source content collaboration platform. From version 6.1.0 to before version 8.2.2, an attacker can craft links that would redirect users to another website, when the victim uses the attackers link to log in via user OIDC. This issue has been patched in version 8.2.2.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

GitHub M

Reservieren

11.05.2026

Veröffentlichung

01.06.2026

Moderieren

akzeptiert

Eintrag

VDB-367735

CPE

bereit

CWE

CWE-601 (bestätigt)

CVSS

3.3 (CNA)

EPSS

0.00022

KEV

nein

Aktivitäten

very low

Sektor

Insurance, Industry, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-45278
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-45278
CVE Details	https://www.cvedetails.com/cve/CVE-2026-45278/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!