CVE Vulnerabilities

CVE-2019-15620

Published: Feb 04, 2020 | Modified: Oct 09, 2020
CVSS 3.x
2.7
LOW
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Improper access control in Nextcloud Talk 6.0.3 leaks the existance and the name of private conversations when linked them to another shared item via the projects feature.

Affected Software

Name Vendor Start Version End Version
Talk Nextcloud * 6.0.4 (excluding)

References