CVE-2026-45278EPSS p13.8%

CVE-2026-45278CVE-2026-45278

nextcloud / user_oidc

Description

Nextcloud is an open source content collaboration platform. From version 6.1.0 to before version 8.2.2, an attacker can craft links that would redirect users to another website, when the victim uses the attackers link to log in via user OIDC. This issue has been patched in version 8.2.2.

Scoring

CVSS 3.3 ()
VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
EPSS0.23% probability of exploitation · percentile 13.8% · 2026-06-18T12:00:27Z
Last modified2026-06-03

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-45284
CVE
CVE-2026-45282
CVE
CVE-2026-45267
CVE
CVE-2026-45285
CVE
CVE-2026-45277
CVE
CVE-2026-45156
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.