Lucene search

NextcloudGHSA-WQ3G-2X46-Q2GV

HistorySep 16, 2022 - 4:52 a.m.

Last video frame is still sent after video is disabled in a call

2022-09-1604:52:25

github.com

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

26.4%

JSON

Description

Impact

An attacker could see the last video frame of any participant who has video disabled but a camera selected.

Patches

It is recommended that the Nextcloud Talk app is upgraded to 13.0.8 or 14.0.4.

Workarounds

Select “None” as camera before joining the call.

References

For more information

If you have any questions or comments about this advisory:

Create a post in nextcloud/security-advisories
Customers: Open a support ticket at support.nextcloud.com

CPENameOperatorVersion
talklt13.0.8
talklt14.0.4

CPE	Name	Operator	Version
	talk	lt	13.0.8
	talk	lt	14.0.4

References

github.com/nextcloud/spreed/pull/7673

hackerone.com/reports/1641088

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

26.4%

JSON

Related for GHSA-WQ3G-2X46-Q2GV