CVE-2021-32707

Name of the Vulnerable Software and Affected Versions Nextcloud Mail versions prior to 1.9.6

Description The Nextcloud Mail application has an issue where the privacy filter fails to filter images with a background-image CSS attribute, potentially leaking the read state. However, images are still passed through the Nextcloud image proxy, preventing IP leakage.

Recommendations For versions prior to 1.9.6, update to version 1.9.6 or 1.10.0 to resolve the issue. At the moment, there is no information about other workarounds for this issue.