Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistHackeroneCVELIST:CVE-2019-15620
HistoryFeb 04, 2020 - 7:08 p.m.

CVE-2019-15620

2020-02-0419:08:57
CWE-287
hackerone
www.cve.org

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.7%

JSON

Improper access control in Nextcloud Talk 6.0.3 leaks the existance and the name of private conversations when linked them to another shared item via the projects feature.

CNA Affected

[
  {
    "product": "Nextcloud Talk",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "6.0.4"
      }
    ]
  }
]

Related

osv 1
nextcloud 1
cve 1
prion 1
hackerone 1
nvd 1
rosalinux 1
osv
osv
CVE-2019-15620
2020-02-04 20:15:12
nextcloud
nextcloud
Name of private conversations leaked when linked via projects to a shared item (NC-SA-2020-011)
2019-07-29 00:00:00
cve
cve
CVE-2019-15620
2020-02-04 20:15:12
prion
prion
Improper access control
2020-02-04 20:15:00
hackerone
hackerone
Nextcloud: Talk - Leak of password-protected room name via already existent resource addition
2019-07-28 11:34:30
nvd
nvd
CVE-2019-15620
2020-02-04 20:15:12
rosalinux
rosalinux
Advisory ROSA-SA-2021-1983
2021-07-02 18:14:14

5.3 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.7%

JSON
Related for CVELIST:CVE-2019-15620
osv1nextcloud1cve1prion1hackerone1nvd1rosalinux1