← back
CVE-2023-39957

Path traversal allows tricking the Talk Android app into writing files into it's root directory

CVSS 7.2 HIGHEPSS 0.3%CWE-22
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.2EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
10 Aug 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Nextcloud Talk Android allows users to place video and audio calls through Nextcloud on Android. Prior to version 17.0.0, an unprotected intend allowed malicious third party apps to trick the Talk Android app into writing files outside of its intended cache directory. Nextcloud Talk Android version 17.0.0 has a patch for this issue. No known workarounds are available.
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Affected products
nextcloud · security-advisories

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/nextcloud/security-advisories/security/advisories/GHSA-36f7-93f3-mcfjhttps://github.com/nextcloud/talk-android/pull/3064https://hackerone.com/reports/1997029