VYPR
Unrated severityNVD Advisory· Published Nov 15, 2024· Updated Nov 15, 2024

Nextcloud Tables has an Authorization Bypass Through User-Controlled Key in Tables

CVE-2024-52511

Description

Nextcloud Tables allows users to to create tables with individual columns. By directly specifying the ID of a table or view, a malicious user could blindly insert new rows into tables they have no access to. It is recommended that the Nextcloud Tables is upgraded to 0.8.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Nextcloud/Tablesllm-fuzzy
    Range: <0.8.0
  • nextcloud/security-advisoriesv5
    Range: >= 0.6.0, < 0.8.0

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.