VYPR
Unrated severityNVD Advisory· Published Dec 5, 2025· Updated Dec 5, 2025

Nextcloud talk allows participants to blindly delete poll drafts of other users by ID

CVE-2025-66556

Description

Nextcloud talk is a video & audio conferencing app for Nextcloud. Prior to 20.1.8 and 21.1.2, a participant with chat permissions was able to delete poll drafts of other participants within the conversation based on their numeric ID. This vulnerability is fixed in 20.1.8 and 21.1.2.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Google/Talkllm-fuzzy
    Range: <20.1.8, <21.1.2
  • nextcloud/security-advisoriesv5
    Range: < 20.1.8

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.