[add summary of the vulnerability]
–> now mic and cam are enabled remotely, if User B didn’t disable it before removing permissions by User B
Nextcloud 23.0.3
spreed-App 13.0.4
nextcloud-spreed-signaling 0.4.0
A call moderator can remotely enable user webcams, if there were enabled before removing the permissions. This is a big privacy issue.