Unrated severityNVD Advisory· Published Mar 9, 2022· Updated Apr 22, 2025
High memory usage in Nextcloud server
CVE-2022-24741
Description
Nextcloud server is an open source, self hosted cloud style services platform. In affected versions an attacker can cause a denial of service by uploading specially crafted files which will cause the server to allocate too much memory / CPU. It is recommended that the Nextcloud Server is upgraded to 21.0.8 , 22.2.4 or 23.0.1. Users unable to upgrade should disable preview generation with the 'enable_previews' config flag.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- nextcloud/security-advisoriesv5Range: < 21.0.8
Patches
Vulnerability mechanics
References
4- security.gentoo.org/glsa/202208-17mitrevendor-advisoryx_refsource_GENTOO
- github.com/nextcloud/security-advisories/security/advisories/GHSA-jf3h-xf4q-mh89mitrex_refsource_CONFIRM
- github.com/nextcloud/server/pull/30291mitrex_refsource_MISC
- hackerone.com/reports/1261225mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.