vulnerability

Gentoo Linux: CVE-2022-24741: Nextcloud: Multiple Vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:N/C:N/I:N/A:P)	Mar 9, 2022	Aug 11, 2022	Aug 13, 2025

Severity

CVSS

(AV:N/AC:M/Au:N/C:N/I:N/A:P)

Published

Mar 9, 2022

Added

Aug 11, 2022

Modified

Aug 13, 2025

Description

Nextcloud server is an open source, self hosted cloud style services platform. In affected versions an attacker can cause a denial of service by uploading specially crafted files which will cause the server to allocate too much memory / CPU. It is recommended that the Nextcloud Server is upgraded to 21.0.8 , 22.2.4 or 23.0.1. Users unable to upgrade should disable preview generation with the `'enable_previews'` config flag.

Solution

gentoo-linux-upgrade-www-apps-nextcloud

References

CVE-2022-24741
https://attackerkb.com/topics/CVE-2022-24741
CWE-400
CWE-770
GENTOO-202208-17

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today