CVE-2019-15620

Summary

Improper access control in Nextcloud Talk 6.0.3 leaks the existance and the name of private conversations when linked them to another shared item via the projects feature.

Affected Software

VendorProductVersion RangeStatus
n/aNextcloud Talk6.0.4affected

Weaknesses

  • CWE-287: Improper Authentication - Generic (CWE-287)

ADP Enrichment

CVE Program Container

Additional References

References