VYPR
Unrated severityNVD Advisory· Published Sep 16, 2022· Updated Apr 23, 2025

Last video frame is still sent after video is disabled in a call in Nextcloud Talk

CVE-2022-39212

Description

Nextcloud Talk is an open source chat, video & audio calls client for the Nextcloud platform. In affected versions an attacker could see the last video frame of any participant who has video disabled but a camera selected. It is recommended that the Nextcloud Talk app is upgraded to 13.0.8 or 14.0.4. Users unable to upgrade should select "None" as camera before joining the call.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Google/Talkllm-fuzzy
    Range: <13.0.8, <14.0.4
  • nextcloud/security-advisoriesv5
    Range: < 13.0.8

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.