Unrated severityNVD Advisory· Published Feb 24, 2023· Updated Mar 10, 2025
nextcloud vulnerable to Uncontrolled Resource Consumption
CVE-2023-25816
Description
Nextcloud is an Open Source private cloud software. Versions 25.0.0 and above, prior to 25.0.3, are subject to Uncontrolled Resource Consumption. A user can configure a very long password, consuming more resources on password validation than desired. This issue is patched in 25.0.3 No workaround is available.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- nextcloud/security-advisoriesv5Range: >= 25.0.0, < 25.0.3
Patches
Vulnerability mechanics
References
3- github.com/nextcloud/security-advisories/security/advisories/GHSA-53q2-cm29-7j83mitrex_refsource_CONFIRM
- github.com/nextcloud/server/pull/35965mitrex_refsource_MISC
- hackerone.com/reports/1820864mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.