High severity8.0NVD Advisory· Published May 25, 2023· Updated Jun 17, 2026
CVE-2023-32074
CVE-2023-32074
Description
user_oidc app is an OpenID Connect user backend for Nextcloud. Authentication can be broken/bypassed in user_oidc app. It is recommended that the Nextcloud user_oidc app is upgraded to 1.3.2
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- nextcloud/security-advisoriesv5Range: < 1.3.2
Patches
Vulnerability mechanics
References
3- github.com/nextcloud/user_oidc/pull/615nvdIssue TrackingPatch
- github.com/nextcloud/security-advisories/security/advisories/GHSA-x8mc-84wj-rf34nvdVendor Advisory
- hackerone.com/reports/1954711nvdPermissions Required
News mentions
0No linked articles in our index yet.