Fancycode

#50961of 53,608
4.3Total CVSS
Vulnerabilities · 1
PT-2022-16844
4.3
2022-03-09
Nextcloud · Nextcloud Server · CVE-2022-24741
**Name of the Vulnerable Software and Affected Versions** Nextcloud Server versions prior to 21.0.8 Nextcloud Server versions prior to 22.2.4 Nextcloud Server versions prior to 23.0.1 **Description** The issue affects Nextcloud server, an open source, self-hosted cloud style services platform. An attacker can cause a denial of service by uploading specially crafted files, which will cause the server to allocate too much memory or CPU. **Recommendations** For versions prior to 21.0.8, upgrade to 21.0.8 or later. For versions prior to 22.2.4, upgrade to 22.2.4 or later. For versions prior to 23.0.1, upgrade to 23.0.1 or later. As a temporary workaround for users unable to upgrade, consider disabling preview generation with the `enable previews` config flag.