3 matches found
CVE-2022-24886
creationtimestamp| type| source ---|---|--- 2022-04-27 18:13:10+00:00| seen| https://t.me/cibsecurity/41498 2022-06-08 03:56:10+00:00| published-proof-of-concept| https://t.me/androidMalware/1546...
CVE-2022-24886
Summary of CVE-2022-24886 (Nextcloud Android app) The issue affects Nextcloud Android app versions prior to 3.19.0 where any app with notification permission can access contacts if Nextcloud has contact access, without requesting the Contacts permission itself. Root cause: a vulnerability in the ...
CVE-2022-24886 Exposure of Sensitive Information to an Unauthorized Actor in com.nextcloud.client
Nextcloud Android app is the Android client for Nextcloud, a self-hosted productivity platform. In versions prior to 3.19.0, any application with notification permission can access contacts if Nextcloud has access to Contacts without applying for the Contacts permission itself. Version 3.19.0...