diff --git a/lib/base.php b/lib/base.php
index 7654aef2b6092..bf23fd19a3f89 100644
--- a/lib/base.php
+++ b/lib/base.php
@@ -515,7 +515,9 @@ private static function performSameSiteCookieProtection(\OCP\IConfig $config): v
 			$processingScript = $processingScript[count($processingScript) - 1];
 
 			// index.php routes are handled in the middleware
-			if ($processingScript === 'index.php') {
+			// and cron.php does not need any authentication at all
+			if ($processingScript === 'index.php'
+				|| $processingScript === 'cron.php') {
 				return;
 			}