CVE-2022-41968 - OpenCVE

Nextcloud Server is an open source personal cloud server. Prior to versions 23.0.10 and 24.0.5, calendar name lengths are not validated before writing to a database. As a result, an attacker can send unnecessary amounts of data against the database. Version 23.0.10 and 24.0.5 contain patches for the issue. No known workarounds are available.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Nextcloud	Nextcloud Server

Configuration 1 [-]

OR	cpe:2.3:a:nextcloud:nextcloud_server::::::::
	cpe:2.3:a:nextcloud:nextcloud_server:::::enterprise:::*
	cpe:2.3:a:nextcloud:nextcloud_server::::::::
	cpe:2.3:a:nextcloud:nextcloud_server:::::enterprise:::*

No data.

References

Link	Providers
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m92j-xxc8-hq3v
https://github.com/nextcloud/server/pull/33139
https://hackerone.com/reports/1596148

History

No history.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2022-12-01T20:38:46.973Z

Updated: 2024-08-03T12:56:39.130Z

Reserved: 2022-09-30T16:38:28.956Z

Link: CVE-2022-41968

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-12-01T21:15:19.573

Modified: 2023-07-06T13:42:24.530

Link: CVE-2022-41968

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2022-41968", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "requesterUserId": "c184a3d9-dc98-4c48-a45b-d2d88cf0ac74", "dateReserved": "2022-09-30T16:38:28.956Z", "datePublished": "2022-12-01T20:38:46.973Z", "dateUpdated": "2024-08-03T12:56:39.130Z"}, "containers": {"cna": {"title": "Nextcloud Server's calendar name length not validated before writing to database", "problemTypes": [{"descriptions": [{"cweId": "CWE-400", "lang": "en", "description": "CWE-400: Uncontrolled Resource Consumption", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 3.5, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m92j-xxc8-hq3v", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m92j-xxc8-hq3v"}, {"name": "https://github.com/nextcloud/server/pull/33139", "tags": ["x_refsource_MISC"], "url": "https://github.com/nextcloud/server/pull/33139"}, {"name": "https://hackerone.com/reports/1596148", "tags": ["x_refsource_MISC"], "url": "https://hackerone.com/reports/1596148"}], "affected": [{"vendor": "nextcloud", "product": "security-advisories", "versions": [{"version": "< 23.0.10", "status": "affected"}, {"version": ">= 24.0.0, < 24.0.5", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2022-12-01T20:38:46.973Z"}, "descriptions": [{"lang": "en", "value": "Nextcloud Server is an open source personal cloud server. Prior to versions 23.0.10 and 24.0.5, calendar name lengths are not validated before writing to a database. As a result, an attacker can send unnecessary amounts of data against the database. Version 23.0.10 and 24.0.5 contain patches for the issue. No known workarounds are available."}], "source": {"advisory": "GHSA-m92j-xxc8-hq3v", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T12:56:39.130Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m92j-xxc8-hq3v", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m92j-xxc8-hq3v"}, {"name": "https://github.com/nextcloud/server/pull/33139", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/nextcloud/server/pull/33139"}, {"name": "https://hackerone.com/reports/1596148", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://hackerone.com/reports/1596148"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "B19E8026-7DC0-40B6-8FA1-F2F9B00EC54D", "versionEndExcluding": "23.0.10", "versionStartIncluding": "23.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*", "matchCriteriaId": "0E63C01E-F90C-437B-8BCC-96D5437836DA", "versionEndExcluding": "23.0.10", "versionStartIncluding": "23.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:*:*:*:*", "matchCriteriaId": "FD8E7E4F-3467-4124-9FBC-26C72C75BC33", "versionEndExcluding": "24.0.5", "versionStartIncluding": "24.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:nextcloud:nextcloud_server:*:*:*:*:enterprise:*:*:*", "matchCriteriaId": "4D86D66E-CCD7-4588-AE68-F6D1DCF007E1", "versionEndExcluding": "24.0.5", "versionStartIncluding": "24.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Nextcloud Server is an open source personal cloud server. Prior to versions 23.0.10 and 24.0.5, calendar name lengths are not validated before writing to a database. As a result, an attacker can send unnecessary amounts of data against the database. Version 23.0.10 and 24.0.5 contain patches for the issue. No known workarounds are available."}, {"lang": "es", "value": "Nextcloud Server es un servidor en la nube personal de c\u00f3digo abierto. Antes de las versiones 23.0.10 y 24.0.5, las longitudes de los nombres del calendario no se validan antes de escribir en una base de datos. Como resultado, un atacante puede enviar cantidades innecesarias de datos a la base de datos. Las versiones 23.0.10 y 24.0.5 contienen parches para el problema. No hay workarounds disponibles."}], "id": "CVE-2022-41968", "lastModified": "2023-07-06T13:42:24.530", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 3.5, "baseSeverity": "LOW", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 2.1, "impactScore": 1.4, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2022-12-01T21:15:19.573", "references": [{"source": "security-advisories@github.com", "tags": ["Third Party Advisory"], "url": "https://github.com/nextcloud/security-advisories/security/advisories/GHSA-m92j-xxc8-hq3v"}, {"source": "security-advisories@github.com", "tags": ["Patch", "Third Party Advisory"], "url": "https://github.com/nextcloud/server/pull/33139"}, {"source": "security-advisories@github.com", "tags": ["Third Party Advisory"], "url": "https://hackerone.com/reports/1596148"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-1284"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-400"}], "source": "security-advisories@github.com", "type": "Secondary"}]}