CVE-2021-32689

Nextcloud Talk not properly disassociating users from chats after account deletion

Severity Score

6.5

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Nextcloud Talk is a fully on-premises audio/video and chat communication service. In versions prior to 11.2.2, if a user was able to reuse an earlier used username, they could get access to any chat message sent to the previous user with this username. The issue was patched in versions 11.2.2 and 11.3.0. As a workaround, don't allow users to choose usernames themselves. This is the default behaviour of Nextcloud, but some user providers may allow doing so.

Nextcloud Talk es un servicio de comunicación de audio/vídeo y chat totalmente local. En versiones anteriores a 11.2.2, si un usuario podía reusar un nombre de usuario usado anteriormente, podría acceder a cualquier mensaje de chat enviado al usuario anterior con este nombre de usuario. El problema fue corregido en versiones 11.2.2 y 11.3.0. Como solución, no permita a usuarios elegir ellos mismos los nombres de usuario. Este es el comportamiento predeterminado de Nextcloud, pero algunos proveedores de usuarios pueden permitirlo

*Credits: N/A

CVSS Scores

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Attack Vector

Network

Attack Complexity

Low

Authentication

Single

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2021-05-12 CVE Reserved
2021-07-12 CVE Published
2023-03-08 EPSS Updated
2024-08-03 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CWE-708: Incorrect Ownership Assignment

CAPEC

References (4)

URL	Tag	Source
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-xv6f-344w-895c	Third Party Advisory
https://github.com/nextcloud/spreed/releases/tag/v11.2.2	Release Notes
https://github.com/nextcloud/spreed/releases/tag/v11.3.0	Release Notes

URL	Date	SRC

URL	Date	SRC
https://github.com/nextcloud/spreed/pull/5633	2022-07-02

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Nextcloud Search vendor "Nextcloud"		Talk Search vendor "Nextcloud" for product "Talk"				< 11.2.2 Search vendor "Nextcloud" for product "Talk" and version " < 11.2.2"		-		Affected