CVE-2023-28848

Source
https://cve.org/CVERecord?id=CVE-2023-28848
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-28848.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-28848
Aliases
  • GHSA-52hv-xw32-wf7f
Published
2023-04-04T12:38:31.201Z
Modified
2026-04-10T04:57:01.950636Z
Severity
  • 4.8 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
Summary
CSRF protection on user_oidc login returned the expected token in case of an error
Details

useroidc is the OIDC connect user backend for Nextcloud, an open source collaboration platform. A vulnerability in versions 1.0.0 until 1.3.0 effectively allowed an attacker to bypass the state protection as they could just copy the expected state token from the first request to their second request. Users should upgrade useroidc to 1.3.0 to receive a patch for the issue. No known workarounds are available.

Database specific
{
    "cwe_ids": [
        "CWE-352"
    ],
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/28xxx/CVE-2023-28848.json"
}
References

Affected packages

Git / github.com/nextcloud/user_oidc

Affected ranges

Type
GIT
Repo
https://github.com/nextcloud/user_oidc
Events

Affected versions

v1.*
v1.0.0
v1.1.0
v1.2.0
v1.2.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-28848.json"