Vulnerability CVE-2022-41968

Published: 2022-12-01   Modified: 2022-12-02

Nextcloud Server is an open source personal cloud server. Prior to versions 23.0.10 and 24.0.5, calendar name lengths are not validated before writing to a database. As a result, an attacker can send unnecessary amounts of data against the database. Version 23.0.10 and 24.0.5 contain patches for the issue. No known workarounds are available.



(Uncontrolled Resource Consumption ('Resource Exhaustion'))


Copyright 2023,


Back to Top