Skip to main content

Talk

15 CVEs product

Monthly

CVE-2023-45149 MEDIUM PATCH This Month

Nextcloud talk is a chat module for the Nextcloud server platform. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Nextcloud Talk
NVD GitHub
CVSS 3.1
4.3
EPSS
0.5%
CVE-2023-39957 HIGH PATCH This Week

Nextcloud Talk Android allows users to place video and audio calls through Nextcloud on Android. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Google Nextcloud Talk
NVD GitHub
CVSS 3.1
7.8
EPSS
0.3%
CVE-2023-30540 MEDIUM PATCH This Month

Nextcloud Talk is a chat, video & audio call extension for Nextcloud. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Nextcloud Talk
NVD GitHub
CVSS 3.1
4.3
EPSS
0.7%
CVE-2023-28845 LOW PATCH Monitor

Nextcloud talk is a video & audio conferencing app for Nextcloud. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Nextcloud Talk
NVD GitHub
CVSS 3.1
3.5
EPSS
0.4%
CVE-2023-22473 LOW POC PATCH Monitor

Talk-Android enables users to have video & audio calls through Nextcloud on Android. Rated low severity (CVSS 2.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Google Authentication Bypass Nextcloud Talk
NVD GitHub
CVSS 3.1
2.1
EPSS
0.6%
CVE-2022-41926 MEDIUM PATCH This Month

Nextcould talk android is the android OS implementation of the nextcloud talk chat system. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Nextcloud Information Disclosure Google Talk
NVD GitHub
CVSS 3.1
5.5
EPSS
0.3%
CVE-2022-39212 MEDIUM PATCH This Month

Nextcloud Talk is an open source chat, video & audio calls client for the Nextcloud platform. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Nextcloud Talk
NVD GitHub
CVSS 3.1
5.3
EPSS
0.5%
CVE-2022-35932 MEDIUM PATCH This Month

Nextcloud Talk is a video and audio conferencing app for Nextcloud. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Nextcloud Information Disclosure Talk
NVD GitHub
CVSS 3.1
5.3
EPSS
1.1%
CVE-2022-24890 MEDIUM POC PATCH This Month

Nextcloud Talk is a video and audio conferencing app for Nextcloud. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Nextcloud Information Disclosure Talk
NVD GitHub
CVSS 3.1
4.3
EPSS
0.9%
CVE-2022-24887 MEDIUM POC PATCH This Month

Nextcloud Talk is a video and audio conferencing app for Nextcloud, a self-hosted productivity platform. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Open Redirect Nextcloud Talk
NVD GitHub
CVSS 3.1
6.1
EPSS
0.9%
CVE-2021-39222 MEDIUM This Month

Nextcloud is an open-source, self-hosted productivity platform. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Nextcloud XSS Talk
NVD GitHub
CVSS 3.1
6.1
EPSS
1.1%
CVE-2021-32689 MEDIUM PATCH This Month

Nextcloud Talk is a fully on-premises audio/video and chat communication service. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Nextcloud Information Disclosure Talk
NVD GitHub
CVSS 3.1
6.5
EPSS
1.0%
CVE-2021-32676 MEDIUM This Month

Nextcloud Talk is a fully on-premises audio/video and chat communication service. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Nextcloud Session Fixation Talk
NVD GitHub
CVSS 3.1
6.5
EPSS
1.0%
CVE-2020-8180 CRITICAL POC Act Now

A too lax check in Nextcloud Talk 6.0.4, 7.0.2 and 8.0.7 allowed a code injection when a not correctly sanitized talk command was added by an administrator. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Nextcloud Code Injection Talk
NVD
CVSS 3.1
9.9
EPSS
1.7%
CVE-2018-3781 MEDIUM This Month

A missing sanitization of search results for an autocomplete field in NextCloud Talk <3.2.5 could lead to a stored XSS requiring user-interaction. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Nextcloud XSS Talk
NVD
CVSS 3.0
5.4
EPSS
0.6%
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

Nextcloud talk is a chat module for the Nextcloud server platform. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Nextcloud Talk
NVD GitHub
EPSS 0% CVSS 7.8
HIGH PATCH This Week

Nextcloud Talk Android allows users to place video and audio calls through Nextcloud on Android. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

Path Traversal Google Nextcloud +1
NVD GitHub
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

Nextcloud Talk is a chat, video & audio call extension for Nextcloud. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Nextcloud Talk
NVD GitHub
EPSS 0% CVSS 3.5
LOW PATCH Monitor

Nextcloud talk is a video & audio conferencing app for Nextcloud. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Nextcloud Talk
NVD GitHub
EPSS 1% CVSS 2.1
LOW POC PATCH Monitor

Talk-Android enables users to have video & audio calls through Nextcloud on Android. Rated low severity (CVSS 2.1), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Google Authentication Bypass Nextcloud +1
NVD GitHub
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Nextcould talk android is the android OS implementation of the nextcloud talk chat system. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Nextcloud Information Disclosure Google +1
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

Nextcloud Talk is an open source chat, video & audio calls client for the Nextcloud platform. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Nextcloud Talk
NVD GitHub
EPSS 1% CVSS 5.3
MEDIUM PATCH This Month

Nextcloud Talk is a video and audio conferencing app for Nextcloud. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Nextcloud Information Disclosure Talk
NVD GitHub
EPSS 1% CVSS 4.3
MEDIUM POC PATCH This Month

Nextcloud Talk is a video and audio conferencing app for Nextcloud. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Nextcloud Information Disclosure Talk
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM POC PATCH This Month

Nextcloud Talk is a video and audio conferencing app for Nextcloud, a self-hosted productivity platform. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Open Redirect Nextcloud Talk
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM This Month

Nextcloud is an open-source, self-hosted productivity platform. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Nextcloud XSS Talk
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM PATCH This Month

Nextcloud Talk is a fully on-premises audio/video and chat communication service. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Nextcloud Information Disclosure Talk
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM This Month

Nextcloud Talk is a fully on-premises audio/video and chat communication service. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Nextcloud Session Fixation +1
NVD GitHub
EPSS 2% CVSS 9.9
CRITICAL POC Act Now

A too lax check in Nextcloud Talk 6.0.4, 7.0.2 and 8.0.7 allowed a code injection when a not correctly sanitized talk command was added by an administrator. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Nextcloud Code Injection +1
NVD
EPSS 1% CVSS 5.4
MEDIUM This Month

A missing sanitization of search results for an autocomplete field in NextCloud Talk <3.2.5 could lead to a stored XSS requiring user-interaction. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Nextcloud XSS Talk
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy