Information disclosure in Nextcloud Security-advisories

CVE-2022-41926

Nextcould talk android is the android OS implementation of the nextcloud talk chat system. In affected versions the receiver is not protected by broadcastPermission allowing malicious apps to monitor communication. It is recommended that t…

Vulnerability class: Information Disclosure

EPSS: 0.003 (18.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.3 (Low). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N.

Affected products

Weakness classification (CWE)

References

Frequently asked questions

What is CVE-2022-41926?
CVE-2022-41926 is a low-severity vulnerability in Nextcloud Security-advisories, classified under Information Disclosure. CVSS score: 3.3/10. Published 2022-11-25.
How severe is CVE-2022-41926?
Low severity. CVSS v3 base score is 3.3 out of 10.