CVE-2024-37312 — user_oidc app is an OpenID Connect user backend for Nextcloud. Missing access control on the ID4me endpoint allows an attacker to register an account eventually getting access to data that is availabl — CVE Database · The Intelligence Room