CVE-2019-15620

CVE-2019-15620

Vendor N/A
Product Nextcloud Talk
Weakness CWE-287 · Improper authentication
Published February 4, 2020
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Improper access control in Nextcloud Talk 6.0.3 leaks the existance and the name of private conversations when linked them to another shared item via the projects feature.

Key dates

02Disclosure timeline

February 4, 2020 CVE published
August 5, 2024 Record updated