Ctulhu

**Name of the Vulnerable Software and Affected Versions** Nextcloud Talk versions prior to 15.0.3 **Description** Nextcloud Talk is a fully on-premises audio/video and chat communication service. When cron jobs were misconfigured, messages were not expired, and the API would still return them while they were hidden by the frontend code. **Recommendations** For versions prior to 15.0.3, upgrade to version 15.0.3 to resolve the issue. As a temporary workaround, consider configuring cron jobs properly to expire messages, until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Nextcloud Mail versions prior to 2.2.1 Nextcloud Mail versions prior to 1.14.5 Nextcloud Mail versions prior to 1.12.9 Nextcloud Mail versions prior to 1.11.8 **Description** Nextcloud Mail is an email app for the Nextcloud home server platform. An attacker can access the mail box by ID, getting the subjects and the first characters of the emails. **Recommendations** For Nextcloud 25, upgrade to Mail 2.2.1 to receive a patch. For Nextcloud 22-24, upgrade to Mail 1.14.5 to receive a patch. For Nextcloud 21, upgrade to Mail 1.12.9 to receive a patch. For Nextcloud 20, upgrade to Mail 1.11.8 to receive a patch.

**Name of the Vulnerable Software and Affected Versions** Nextcloud Talk Android app versions prior to 15.0.2 **Description** The issue allows an attacker to bypass the passcode, gaining access to the user's Nextcloud files and conversations. This can be exploited with physical access to the target device. **Recommendations** For versions prior to 15.0.2, upgrade the Nextcloud Talk Android app to 15.0.2 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Nextcloud Deck versions prior to 1.2.11 Nextcloud Deck versions prior to 1.4.6 Nextcloud Deck versions prior to 1.5.4 **Description** Nextcloud Deck is a Kanban-style project and personal management tool for Nextcloud, similar to Trello. The full path of the application is exposed to unauthorized users. **Recommendations** For versions prior to 1.2.11, upgrade to 1.2.11. For versions prior to 1.4.6, upgrade to 1.4.6. For versions prior to 1.5.4, upgrade to 1.5.4.

**Name of the Vulnerable Software and Affected Versions** Nextcloud Talk versions prior to 11.3.4 Nextcloud Talk versions prior to 12.2.2 Nextcloud Talk versions prior to 13.0.0 **Description** The issue affects Nextcloud Talk, a video and audio conferencing app for Nextcloud, a self-hosted productivity platform. When sharing a Deck card in conversation, the metaData can be manipulated, allowing users to be tricked into opening arbitrary URLs. **Recommendations** For versions prior to 11.3.4, update to version 11.3.4 or later. For versions prior to 12.2.2, update to version 12.2.2 or later. For versions prior to 13.0.0, update to version 13.0.0 or later.

**Name of the Vulnerable Software and Affected Versions** Nextcloud Talk versions prior to 12.1.2 **Description** Nextcloud talk is a self-hosting messaging service. In affected versions, an attacker is able to control the link of a geolocation preview in the Nextcloud Talk application due to a lack of validation on the link. This could result in an open-redirect, but required user interaction. This only affected users of the Android Talk client. **Recommendations** For versions prior to 12.1.2, it is recommended that the Nextcloud Talk App is upgraded to 12.1.2. As a temporary workaround, consider restricting the use of geolocation previews in the Nextcloud Talk application until a patch is available. Avoid using the geolocation preview feature in the affected Android Talk client until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Nextcloud Android app versions prior to 3.7.0 **Description** The issue concerns improper sanitization of HTML in directory names. This allows styling of the directory name in the header bar when using basic HTML. **Recommendations** For versions prior to 3.7.0, update to version 3.7.0 or later to resolve the issue.